CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-0013

nwclient.c in ncpfs before 2.2.6 does not drop root privileges before executing utilities using the NetWare client functions, which allows local users to gain privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.9%

CVSS Severity

CVSS v2 Score 7.2

References

ftp://platan.vc.cvut.cz/pub/linux/ncpfs/Changes-2.2.6
http://securitytracker.com/id?1013019
http://www.debian.org/security/2005/dsa-665
http://www.gentoo.org/security/en/glsa/glsa-200501-44.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:028
http://www.osvdb.org/13297
http://www.redhat.com/support/errata/RHSA-2005-371.html
http://www.securityfocus.com/archive/1/433927/100/0/threaded
http://www.securityfocus.com/bid/12400
ftp://platan.vc.cvut.cz/pub/linux/ncpfs/Changes-2.2.6
http://securitytracker.com/id?1013019
http://www.debian.org/security/2005/dsa-665
http://www.gentoo.org/security/en/glsa/glsa-200501-44.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:028
http://www.osvdb.org/13297
http://www.redhat.com/support/errata/RHSA-2005-371.html
http://www.securityfocus.com/archive/1/433927/100/0/threaded
http://www.securityfocus.com/bid/12400

Products affected by CVE-2005-0013

Ncpfs » Ncpfs » Version: 2.2.1

cpe:2.3:a:ncpfs:ncpfs:2.2.1
Ncpfs » Ncpfs » Version: 2.2.2

cpe:2.3:a:ncpfs:ncpfs:2.2.2
Ncpfs » Ncpfs » Version: 2.2.3

cpe:2.3:a:ncpfs:ncpfs:2.2.3
Ncpfs » Ncpfs » Version: 2.2.4

cpe:2.3:a:ncpfs:ncpfs:2.2.4
Ncpfs » Ncpfs » Version: 2.2.5

cpe:2.3:a:ncpfs:ncpfs:2.2.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0013

Products

Pricing

Contact Us