CVE-2010-0788
published 2010-03-02CVE-2010-0788: ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1)…
PriorityP417medium4.4CVSS 2.0
AVLACMAuNCPIPAP
EXPLOIT
EPSS
0.68%
47.5th percentile
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ncpfs | ncpfs | — | — |
CVSS provenance
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat4.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations
vendor_redhat·2010-01-26·CVSS 4.4
CVE-2010-0788 [MEDIUM] ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations
ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.
GHSA
GHSA-wjgc-p53r-xxfv: ncpfs 2
ghsa_unreviewed·2022-05-02
CVE-2010-0788 [MEDIUM] CWE-59 GHSA-wjgc-p53r-xxfv: ncpfs 2
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.
No detection rules found.
Bugzilla
CVE-2010-1171 CVE-2009-0788 spacewalk-backend various flaws [fedora-all]
bugzilla·2011-04-11·CVSS 6.4
CVE-2010-1171 [MEDIUM] CVE-2010-1171 CVE-2009-0788 spacewalk-backend various flaws [fedora-all]
CVE-2010-1171 CVE-2009-0788 spacewalk-backend various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=584118
Please note: this issue affects multiple s
Bugzilla
CVE-2010-0789 fuse: Race condition by umount (fusermount) operations
bugzilla·2010-03-26·CVSS 3.3
CVE-2010-0789 [LOW] CVE-2010-0789 fuse: Race condition by umount (fusermount) operations
CVE-2010-0789 fuse: Race condition by umount (fusermount) operations
+++ This bug was initially created as a clone of Bug #532940 +++
Several race condition flaws were found in samba-client,
fuse and ncpfs packages:
a, Ronald Volgers found a race condition in the samba-client's
mount.cifs utility. Local, unprivileged user could use this
flaw to conduct symlink attacks, leading to disclosure of
sensitive information, or, possibly to privilege escalation.
Upstream bug report:
https://bugzilla.samba.org/show_bug.cgi?id=6853
Upstream Samba patches:
http://git.samba.org/?p=samba.git;a=commit;h=3ae5dac462c4ed0fb2cd94553583c56fce2f9d80 http://git.samba.org/?p=samba.git;a=commit;h=a065c177dfc8f968775593ba00dffafeebb2e054 http://git.samba.org/?p=samba.git;a=commit;h=a0c31ec1c8d1220a5884e40d9b
Bugzilla
CVE-2010-0787 samba: Race condition by mount (mount.cifs) operations
bugzilla·2010-03-26·CVSS 4.4
CVE-2010-0787 [MEDIUM] CVE-2010-0787 samba: Race condition by mount (mount.cifs) operations
CVE-2010-0787 samba: Race condition by mount (mount.cifs) operations
+++ This bug was initially created as a clone of Bug #532940 +++
Several race condition flaws were found in samba-client,
fuse and ncpfs packages:
a, Ronald Volgers found a race condition in the samba-client's
mount.cifs utility. Local, unprivileged user could use this
flaw to conduct symlink attacks, leading to disclosure of
sensitive information, or, possibly to privilege escalation.
Upstream bug report:
https://bugzilla.samba.org/show_bug.cgi?id=6853
Upstream Samba patches:
http://git.samba.org/?p=samba.git;a=commit;h=3ae5dac462c4ed0fb2cd94553583c56fce2f9d80 http://git.samba.org/?p=samba.git;a=commit;h=a065c177dfc8f968775593ba00dffafeebb2e054 http://git.samba.org/?p=samba.git;a=commit;h=a0c31ec1c8d1220a5884e40d9b
Bugzilla
CVE-2010-0790 CVE-2010-0791 ncpfs: Information disclosure and denial of service
bugzilla·2010-03-11·CVSS 4.4
CVE-2010-0790 [MEDIUM] CVE-2010-0790 CVE-2010-0791 ncpfs: Information disclosure and denial of service
CVE-2010-0790 CVE-2010-0791 ncpfs: Information disclosure and denial of service
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-0790 to
the following vulnerability:
sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain
detailed error messages about the results of privileged file-access
attempts, which allows local users to determine the existence of
arbitrary files via the mountpoint name.
References:
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0790
[2] http://www.securityfocus.com/archive/1/archive/1/509894/100/0/threaded
[3] http://www.securityfocus.com/archive/1/archive/1/509893/100/0/threaded
[4] http://seclists.org/fulldisclosure/2010/Mar/122
[5] http://www.securityfocus.com/bid/38563
--
Common Vulnerabilities and Exposures assigned an
Bugzilla
CVE-2010-0788 ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations
bugzilla·2009-11-04·CVSS 4.4
CVE-2010-0788 [MEDIUM] CVE-2010-0788 ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations
CVE-2010-0788 ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations
Several race condition flaws were found in samba-client,
fuse and ncpfs packages:
a, Ronald Volgers found a race condition in the samba-client's
mount.cifs utility. Local, unprivileged user could use this
flaw to conduct symlink attacks, leading to disclosure of
sensitive information, or, possibly to privilege escalation.
Upstream bug report:
https://bugzilla.samba.org/show_bug.cgi?id=6853
Upstream Samba patches:
http://git.samba.org/?p=samba.git;a=commit;h=3ae5dac462c4ed0fb2cd94553583c56fce2f9d80 http://git.samba.org/?p=samba.git;a=commit;h=a065c177dfc8f968775593ba00dffafeebb2e054 http://git.samba.org/?p=samba.git;a=commit;h=a0c31ec1c8d1220a5884e40d9ba6b191a04a24d5
Issue severity note for Red Hat
http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034403.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-January/034422.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlhttp://seclists.org/fulldisclosure/2010/Mar/122http://secunia.com/advisories/38327http://secunia.com/advisories/38371http://www.securityfocus.com/archive/1/509893/100/0/threadedhttp://www.securityfocus.com/archive/1/509894/100/0/threadedhttp://www.securityfocus.com/bid/38563https://bugzilla.redhat.com/show_bug.cgi?id=532940https://bugzilla.redhat.com/show_bug.cgi?id=558833http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034403.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-January/034422.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlhttp://seclists.org/fulldisclosure/2010/Mar/122http://secunia.com/advisories/38327http://secunia.com/advisories/38371http://www.securityfocus.com/archive/1/509893/100/0/threadedhttp://www.securityfocus.com/archive/1/509894/100/0/threadedhttp://www.securityfocus.com/bid/38563https://bugzilla.redhat.com/show_bug.cgi?id=532940https://bugzilla.redhat.com/show_bug.cgi?id=558833
2010-03-02
Published