Local File Enumeration Vulnerability in cifs-utils by SUSE
CVE-2012-1586

Currently unrated

Key Information:

Vendor

Debian
Status
Cifs-utils
Vendor
CVE Published:
27 August 2012

What is CVE-2012-1586?

The cifs-utils package version 2.6 is vulnerable to a local file enumeration issue. Local users can exploit this vulnerability by supplying a file path in the second argument of the mount.cifs command. The response triggers an error message that inadvertently reveals the existence of specified files or directories. This can lead to information disclosure, as attackers may gain insights into the structure and contents of the file system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://lists.opensuse.org/opensuse-security-announce/2012...
vendor-advisoryx_refsource_SUSE
http://www.openwall.com/lists/oss-security/2012/03/27/6
mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/03/27/1
mailing-listx_refsource_MLIST

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.