CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-2654

Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences. NOTE: this is similar to CVE-2006-1864, but this is a different implementation of smbfs, so it has a different CVE identifier.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.4%

CVSS Severity

CVSS v2 Score 6.4

References

http://secunia.com/advisories/20390
http://security.freebsd.org/advisories/FreeBSD-SA-06:16.smbfs.asc
http://securitytracker.com/id?1016194
http://www.osvdb.org/25851
http://www.securityfocus.com/bid/18202
https://exchange.xforce.ibmcloud.com/vulnerabilities/26860
http://secunia.com/advisories/20390
http://security.freebsd.org/advisories/FreeBSD-SA-06:16.smbfs.asc
http://securitytracker.com/id?1016194
http://www.osvdb.org/25851
http://www.securityfocus.com/bid/18202
https://exchange.xforce.ibmcloud.com/vulnerabilities/26860

Products affected by CVE-2006-2654

Freebsd » Freebsd » Version: 5.0

cpe:2.3:o:freebsd:freebsd:5.0
Freebsd » Freebsd » Version: 5.1

cpe:2.3:o:freebsd:freebsd:5.1
Freebsd » Freebsd » Version: 5.2

cpe:2.3:o:freebsd:freebsd:5.2
Freebsd » Freebsd » Version: 5.2.1

cpe:2.3:o:freebsd:freebsd:5.2.1
Freebsd » Freebsd » Version: 5.3

cpe:2.3:o:freebsd:freebsd:5.3
Freebsd » Freebsd » Version: 5.4

cpe:2.3:o:freebsd:freebsd:5.4
Freebsd » Freebsd » Version: 6.0

cpe:2.3:o:freebsd:freebsd:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2654

Products

Pricing

Contact Us