CVE-2011-1680

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2011-1680
ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors.

4.4 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 3.4 / Impact : 6.4

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://openwall.com/lists/oss-security/2011/03/04/10
http://openwall.com/lists/oss-security/2011/03/04/11
http://openwall.com/lists/oss-security/2011/03/04/12
http://openwall.com/lists/oss-security/2011/03/04/9
http://openwall.com/lists/oss-security/2011/03/05/3
http://openwall.com/lists/oss-security/2011/03/05/7
http://openwall.com/lists/oss-security/2011/03/07/9
http://openwall.com/lists/oss-security/2011/03/14/16
http://openwall.com/lists/oss-security/2011/03/14/5
http://openwall.com/lists/oss-security/2011/03/14/7
http://openwall.com/lists/oss-security/2011/03/15/6
http://openwall.com/lists/oss-security/2011/03/22/4
http://openwall.com/lists/oss-security/2011/03/22/6
http://openwall.com/lists/oss-security/2011/03/31/3 Exploit
http://openwall.com/lists/oss-security/2011/03/31/4
http://openwall.com/lists/oss-security/2011/04/01/2
https://bugzilla.redhat.com/show_bug.cgi?id=688980 Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/66700
http://openwall.com/lists/oss-security/2011/03/04/10
http://openwall.com/lists/oss-security/2011/03/04/11
http://openwall.com/lists/oss-security/2011/03/04/12
http://openwall.com/lists/oss-security/2011/03/04/9
http://openwall.com/lists/oss-security/2011/03/05/3
http://openwall.com/lists/oss-security/2011/03/05/7
http://openwall.com/lists/oss-security/2011/03/07/9
http://openwall.com/lists/oss-security/2011/03/14/16
http://openwall.com/lists/oss-security/2011/03/14/5
http://openwall.com/lists/oss-security/2011/03/14/7
http://openwall.com/lists/oss-security/2011/03/15/6
http://openwall.com/lists/oss-security/2011/03/22/4
http://openwall.com/lists/oss-security/2011/03/22/6
http://openwall.com/lists/oss-security/2011/03/31/3 Exploit
http://openwall.com/lists/oss-security/2011/03/31/4
http://openwall.com/lists/oss-security/2011/04/01/2
https://bugzilla.redhat.com/show_bug.cgi?id=688980 Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/66700
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ncpfs:ncpfs:*:*:*:*:*:*:*:*
cpe:2.3:a:ncpfs:ncpfs:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ncpfs:ncpfs:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ncpfs:ncpfs:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ncpfs:ncpfs:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ncpfs:ncpfs:2.2.5:*:*:*:*:*:*:*
History

No history.

Information

Published : 2011-04-10 02:55

Updated : 2025-04-11 00:51

NVD link : CVE-2011-1680

Mitre link : CVE-2011-1680

CVE.ORG link : CVE-2011-1680

JSON object : View

Products Affected

ncpfs

  • ncpfs
CWE
CWE-264

Permissions, Privileges, and Access Controls