Vulnerability Details CVE-2010-0788
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.4%
CVSS Severity
CVSS v2 Score 4.4
References
- http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034403.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034422.html
- http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
- http://seclists.org/fulldisclosure/2010/Mar/122
- http://secunia.com/advisories/38327
- http://secunia.com/advisories/38371
- http://www.securityfocus.com/archive/1/509893/100/0/threaded
- http://www.securityfocus.com/archive/1/509894/100/0/threaded
- http://www.securityfocus.com/bid/38563
- https://bugzilla.redhat.com/show_bug.cgi?id=532940
- https://bugzilla.redhat.com/show_bug.cgi?id=558833
- http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034403.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034422.html
- http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
- http://seclists.org/fulldisclosure/2010/Mar/122
- http://secunia.com/advisories/38327
- http://secunia.com/advisories/38371
- http://www.securityfocus.com/archive/1/509893/100/0/threaded
- http://www.securityfocus.com/archive/1/509894/100/0/threaded
- http://www.securityfocus.com/bid/38563
- https://bugzilla.redhat.com/show_bug.cgi?id=532940
- https://bugzilla.redhat.com/show_bug.cgi?id=558833