QwikSec

Security Database

CVE

CWE

Training

CVE-2010-0547

Published: Feb 4, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_GENTOO

vdb-entry

x_refsource_BID

http://git.samba.org/?p=samba.git%3Ba=commit%3Bh=a065c177dfc8f968775593ba00dffafeebb2e054

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

SUSE-SR:2010:008

vendor-advisory

x_refsource_SUSE

SUSE-SR:2010:014

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.