Ncpfs : Security vulnerabilities, CVEs published in 2010

Copy

CVE-2010-0788

ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.

Max CVSS

4.4

EPSS Score

0.04%

Published

2010-03-02

Updated

2018-10-10

CVE-2010-0790

sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain detailed error messages about the results of privileged file-access attempts, which allows local users to determine the existence of arbitrary files via the mountpoint name.

Max CVSS

2.1

EPSS Score

0.04%

Published

2010-03-10

Updated

2018-10-10

CVE-2010-0791

The (1) ncpmount, (2) ncpumount, and (3) ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service (application failure) via unspecified vectors that trigger the creation of a /etc/mtab~ file that persists after the program exits.

Max CVSS

2.1

EPSS Score

0.04%

Published

2010-03-10

Updated

2018-10-10

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!