Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:30180
HistoryMar 10, 2012 - 12:00 a.m.

Samba 3.x 'etc/mtab'文件附加本地拒绝服务漏洞

2012-03-1000:00:00
Root
www.seebug.org
28

EPSS

0.001

Percentile

26.9%

JSON

BUGTRAQ ID: 49939
CVE ID: CVE-2011-1678

Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。

Samba 3.5.8及更早版本中的smbfs尝试使用mount.cifs附加到/etc/mtab文件,umount.cifs附加到/etc/mtab.tmp文件,而没有检查资源限制,可使本地用户通过small RLIMIT_FSIZE值相关进程破坏/etc/mtab文件。
0
Samba 3.x
厂商补丁:

Samba

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.samba.org/

Related

openvas 35
nessus 18
seebug 1
fedora 1
veracode 1
ubuntu 2
cvelist 1
nvd 1
prion 1
ubuntucve 1
cve 1
debiancve 1
securityvulns 2
oraclelinux 4
centos 2
redhat 3
gentoo 1
vmware 2
openvas
openvas
Samba 'etc/mtab' File Appending Local Denial of Service Vulnerability
2011-10-13 00:00:00
Fedora Update for cifs-utils FEDORA-2011-9269
2011-07-27 00:00:00
Fedora Update for cifs-utils FEDORA-2011-9269
2011-07-27 00:00:00
nessus
nessus
Fedora 14 : cifs-utils-4.8.1-6.fc14 (2011-9269)
2011-07-25 00:00:00
Ubuntu 10.10 / 11.04 : cifs-utils vulnerabilities (USN-1226-2)
2011-10-05 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS : samba vulnerabilities (USN-1226-1)
2011-10-05 00:00:00
seebug
seebug
Linux kernel 2.6.x本地拒绝服务漏洞(CVE-2011-1678)
2012-03-10 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: cifs-utils-4.8.1-6.fc14
2011-07-22 19:40:26
veracode
veracode
Insecure Resource Limit Verification
2020-04-10 01:01:46
ubuntu
ubuntu
cifs-utils vulnerabilities
2011-10-04 00:00:00
Samba vulnerabilities
2011-10-04 00:00:00
cvelist
cvelist
CVE-2011-1678
2011-04-10 01:29:00
nvd
nvd
CVE-2011-1678
2011-04-10 02:55:02
prion
prion
Sql injection
2011-04-10 02:55:00
ubuntucve
ubuntucve
CVE-2011-1678
2011-04-09 00:00:00
cve
cve
CVE-2011-1678
2011-04-10 02:55:02
debiancve
debiancve
CVE-2011-1678
2011-04-10 02:55:02
securityvulns
securityvulns
[USN-1226-1] Samba vulnerabilities
2011-10-16 00:00:00
Samba security vulnerabilities
2011-10-16 00:00:00
oraclelinux
oraclelinux
samba3x security update
2011-08-29 00:00:00
samba and cifs-utils security and bug fix update
2011-08-29 00:00:00
samba security update
2011-08-29 00:00:00
centos
centos
samba3x security update
2011-09-01 16:12:20
libsmbclient, samba security update
2011-08-29 21:13:06
redhat
redhat
(RHSA-2011:1220) Moderate: samba3x security update
2011-08-29 00:00:00
(RHSA-2011:1219) Moderate: samba security update
2011-08-29 00:00:00
(RHSA-2011:1221) Moderate: samba and cifs-utils security and bug fix update
2011-08-29 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2012-06-24 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00

EPSS

0.001

Percentile

26.9%

JSON
Related for SSV:30180
openvas35nessus18seebug1fedora1veracode1ubuntu2cvelist1nvd1prion1ubuntucve1cve1debiancve1securityvulns2oraclelinux4centos2redhat3gentoo1vmware2