The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=697394 | Issue Tracking Patch Third Party Advisory |
http://www.openwall.com/lists/oss-security/2011/04/15/8 | Mailing List Third Party Advisory |
https://github.com/torvalds/linux/commit/4ff67b720c02c36e54d55b88c2931879b7db1cd2 | Exploit Patch Third Party Advisory |
http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 | Release Notes Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html | Mailing List Third Party Advisory |
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4ff67b720c02c36e54d55b88c2931879b7db1cd2 |
Information
Published : 2013-06-08 06:05
Updated : 2023-02-12 16:17
NVD link : CVE-2011-1585
Mitre link : CVE-2011-1585
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
suse
- suse_linux_enterprise_server
linux
- linux_kernel