CVE-2006-5871

smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are enabled, ignores certain mount options, which could cause clients to use server-specified uid, gid and mode settings.

🔗 References (18)

• cve@mitrehttp://secunia.com/advisories/23361
• cve@mitrehttp://secunia.com/advisories/23370
• cve@mitrehttp://secunia.com/advisories/23395
• cve@mitrehttp://secunia.com/advisories/25683
• cve@mitrehttp://www.debian.org/security/2006/dsa-1233
• cve@mitrehttp://www.novell.com/linux/security/advisories/2007_35_kernel.html
• cve@mitrehttp://www.securityfocus.com/bid/21523
• cve@mitrehttp://www.us.debian.org/security/2006/dsa-1237
• cve@mitrehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10171
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23361
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23370
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23395
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/25683
• af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2006/dsa-1233
• af854a3a-2127-422b-91ae-364da2661108http://www.novell.com/linux/security/advisories/2007_35_kernel.html