Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-0296

Опубликовано: 25 мая 2010
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6glibcNot affected
Red Hat Enterprise Linux 4glibcFixedRHSA-2012:012513.02.2012
Red Hat Enterprise Linux 5glibcFixedRHSA-2011:041204.04.2011

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
https://bugzilla.redhat.com/show_bug.cgi?id=559579glibc: Improper encoding of names with certain special character in utilities for writing to mtab table

EPSS

Процентиль: 30%
0.00107
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-0296

ubuntu
около 15 лет назад

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.

nvd логотип

CVE-2010-0296

nvd
около 15 лет назад

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.

debian логотип

CVE-2010-0296

debian
около 15 лет назад

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka gli ...

github логотип

GHSA-8hvc-pfj5-96x6

github
около 3 лет назад

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.

fstec логотип

BDU:2017-00285

fstec
около 15 лет назад

Уязвимость библиотеки, обеспечивающей системные вызовы и основные функции glibc, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

EPSS

Процентиль: 30%
0.00107
Низкий

4.3 Medium

CVSS2