CVE-2006-5871

Properties

Published:
10.12.2006
Updated:
21.08.2010
Patch available:
Severity:
Medium
CVSS vector:
(AV:L/AC:M/Au:S/C:P/I:P/A:P)
Product:
linux: linux_kernel
linux: linux_kernel

Vulnerability description

smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are enabled, ignores certain mount options, which could cause clients to use server-specified uid, gid and mode settings.

References:

OVAL: http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10171
DEBIAN: http://www.us.debian.org/security/2006/dsa-1237
BID: http://www.securityfocus.com/bid/21523
SUSE: http://www.novell.com/linux/security/advisories/2007_35_kernel.html
SECUNIA: http://secunia.com/advisories/25683
SECUNIA: http://secunia.com/advisories/23395
SECUNIA: http://secunia.com/advisories/23370
SECUNIA: http://secunia.com/advisories/23361