CVE-2006-1864

Severity

46%

Complexity

39%

Confidentiality

106%

Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.

Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.

CVSS 2.0 Base Score 4.6. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 18 years ago

2006-04-26 18:06:00

Last updated 6 years ago

2018-10-18 16:36:00

Affected Software

Linux Kernel 2.6.16

2.6.16

Linux Kernel 2.6.16 Release Candidate 1

2.6.16

Linux Kernel 2.6.16 Release Candidate 2

2.6.16

Linux Kernel 2.6.16 Release Candidate 3

2.6.16

Linux Kernel 2.6.16 Release Candidate 4

2.6.16

Linux Kernel 2.6.16 Release Candidate 5

2.6.16

Linux Kernel 2.6.16 Release Candidate 6

2.6.16

Linux Kernel 2.6.16.1

2.6.16.1

Linux Kernel 2.6.16.2

2.6.16.2

Linux Kernel 2.6.16.3

2.6.16.3

Linux Kernel 2.6.16.4

2.6.16.4

Linux Kernel 2.6.16.7

2.6.16.7

Linux Kernel 2.6.16.8

2.6.16.8

References

19869

20237

20398

20671

20716

20914

21035

21476

21614

21745

22497

22875

23064

http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm

http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm

DSA-1097

DSA-1103

MDKSA-2006:150

MDKSA-2006:151

SUSE-SA:2006:028

25067

RHSA-2006:0493

RHSA-2006:0579

RHSA-2006:0580

RHSA-2006:0710

20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4

20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2

20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1

20061113 VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2

17735

2006-0026

USN-302-1

http://www.vmware.com/download/esx/esx-202-200610-patch.html

http://www.vmware.com/download/esx/esx-213-200610-patch.html

http://www.vmware.com/download/esx/esx-254-200610-patch.html

ADV-2006-2554

ADV-2006-4502

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189435

Exploit

kernel-smbfs-directory-traversal(26137)

oval:org.mitre.oval:def:11327

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.