CVE-2011-1585
CVSS v2.0
3.3 (Low)
EPSS
0.04 % (5th)
Affected Products
2
Advisories
13
The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.
Weaknesses
- CWE-264
- Permissions, Privileges, and Access Controls
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2013-06-08 13:05:55
(11 years ago) - Updated Date
-
2023-02-13 00:17:09
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...