3.3
CVSSv2

CVE-2011-1678

Published: 10/04/2011 Updated: 17/08/2017
CVSS v2 Base Score: 3.3 | Impact Score: 4.9 | Exploitability Score: 3.4
VMScore: 294
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:N

Vulnerability Summary

smbfs in Samba 3.5.8 and previous versions attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

Affected Products

Vendor Product Versions
SambaSamba3.5.8

Vendor Advisories

An attacker could trick cifs-utils into corrupting the system mtab file ...
An attacker could trick Samba into corrupting the system mtab file ...