Local Privilege Escalation via SMBFS in Samba 3.5.8 and earlier

Local Privilege Escalation via SMBFS in Samba 3.5.8 and earlier

CVE-2011-1678 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:P/A:N

smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

Learn more about our User Device Pen Test.