CVE-2006-2654

Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences. NOTE: this is similar to CVE-2006-1864, but this is a different implementation of smbfs, so it has a different CVE identifier.

🔗 References (12)

• secteam@freebsdhttp://secunia.com/advisories/20390
• secteam@freebsdhttp://security.freebsd.org/advisories/FreeBSD-SA-06:16.smbfs.asc
• secteam@freebsdhttp://securitytracker.com/id?1016194
• secteam@freebsdhttp://www.osvdb.org/25851
• secteam@freebsdhttp://www.securityfocus.com/bid/18202
• secteam@freebsdhttps://exchange.xforce.ibmcloud.com/vulnerabilities/26860
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/20390
• af854a3a-2127-422b-91ae-364da2661108http://security.freebsd.org/advisories/FreeBSD-SA-06:16.smbfs.asc
• af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1016194
• af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/25851
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/18202
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/26860