CVE-2011-1680 - OpenCVE

ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ncpfs	Ncpfs

Configuration 1 [-]

OR	cpe:2.3:a:ncpfs:ncpfs::::::::
	cpe:2.3:a:ncpfs:ncpfs:2.2.1:::::::*
	cpe:2.3:a:ncpfs:ncpfs:2.2.2:::::::*
	cpe:2.3:a:ncpfs:ncpfs:2.2.3:::::::*
	cpe:2.3:a:ncpfs:ncpfs:2.2.4:::::::*
	cpe:2.3:a:ncpfs:ncpfs:2.2.5:::::::*

No data.

References

Link	Providers
http://openwall.com/lists/oss-security/2011/03/04/10
http://openwall.com/lists/oss-security/2011/03/04/11
http://openwall.com/lists/oss-security/2011/03/04/12
http://openwall.com/lists/oss-security/2011/03/04/9
http://openwall.com/lists/oss-security/2011/03/05/3
http://openwall.com/lists/oss-security/2011/03/05/7
http://openwall.com/lists/oss-security/2011/03/07/9
http://openwall.com/lists/oss-security/2011/03/14/16
http://openwall.com/lists/oss-security/2011/03/14/5
http://openwall.com/lists/oss-security/2011/03/14/7
http://openwall.com/lists/oss-security/2011/03/15/6
http://openwall.com/lists/oss-security/2011/03/22/4
http://openwall.com/lists/oss-security/2011/03/22/6
http://openwall.com/lists/oss-security/2011/03/31/3
http://openwall.com/lists/oss-security/2011/03/31/4
http://openwall.com/lists/oss-security/2011/04/01/2
https://bugzilla.redhat.com/show_bug.cgi?id=688980
https://exchange.xforce.ibmcloud.com/vulnerabilities/66700

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-04-10T01:29:00

Updated: 2024-08-06T22:37:24.559Z

Reserved: 2011-04-09T00:00:00

Link: CVE-2011-1680

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-04-10T02:55:02.493

Modified: 2017-08-17T01:34:19.197

Link: CVE-2011-1680

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-03-03T00:00:00", "descriptions": [{"lang": "en", "value": "ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/14/5"}, {"name": "[oss-security] 20110303 Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/04/9"}, {"name": "[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/22/6"}, {"name": "[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/22/4"}, {"name": "[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/05/7"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688980"}, {"name": "[oss-security] 20110307 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/07/9"}, {"name": "ncpfs-mtab-unspecified(66700)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66700"}, {"name": "[oss-security] 20110401 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/04/01/2"}, {"name": "[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/04/10"}, {"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/14/16"}, {"name": "[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/31/4"}, {"name": "[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/04/12"}, {"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/14/7"}, {"name": "[oss-security] 20110303 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/04/11"}, {"name": "[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/05/3"}, {"name": "[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/31/3"}, {"name": "[oss-security] 20110315 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2011/03/15/6"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-1680", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/14/5"}, {"name": "[oss-security] 20110303 Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/04/9"}, {"name": "[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/22/6"}, {"name": "[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/22/4"}, {"name": "[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/05/7"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=688980", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688980"}, {"name": "[oss-security] 20110307 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/07/9"}, {"name": "ncpfs-mtab-unspecified(66700)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66700"}, {"name": "[oss-security] 20110401 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/04/01/2"}, {"name": "[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/04/10"}, {"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/14/16"}, {"name": "[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/31/4"}, {"name": "[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/04/12"}, {"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/14/7"}, {"name": "[oss-security] 20110303 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/04/11"}, {"name": "[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/05/3"}, {"name": "[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/31/3"}, {"name": "[oss-security] 20110315 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2011/03/15/6"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:37:24.559Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/14/5"}, {"name": "[oss-security] 20110303 Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/04/9"}, {"name": "[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/22/6"}, {"name": "[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/22/4"}, {"name": "[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/05/7"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688980"}, {"name": "[oss-security] 20110307 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/07/9"}, {"name": "ncpfs-mtab-unspecified(66700)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66700"}, {"name": "[oss-security] 20110401 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/04/01/2"}, {"name": "[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/04/10"}, {"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/14/16"}, {"name": "[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/31/4"}, {"name": "[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/04/12"}, {"name": "[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/14/7"}, {"name": "[oss-security] 20110303 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/04/11"}, {"name": "[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/05/3"}, {"name": "[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/31/3"}, {"name": "[oss-security] 20110315 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2011/03/15/6"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-1680", "datePublished": "2011-04-10T01:29:00", "dateReserved": "2011-04-09T00:00:00", "dateUpdated": "2024-08-06T22:37:24.559Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ncpfs:ncpfs:*:*:*:*:*:*:*:*", "matchCriteriaId": "C8053679-A01D-4B1D-A87B-27D8A2AAA411", "versionEndIncluding": "2.2.6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ncpfs:ncpfs:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "D956354D-5E8F-4EC2-9A7C-6CAF2A9134F5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ncpfs:ncpfs:2.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "6D6F9518-FF7D-442C-88A5-F4773B5674B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ncpfs:ncpfs:2.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "AA84E591-DC5D-4731-8FF0-3CAC537317F5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ncpfs:ncpfs:2.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "F7115A87-A09A-4636-8109-6DFABBE387E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ncpfs:ncpfs:2.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "8DE729A3-968A-4925-9924-53954D14C218", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors."}, {"lang": "es", "value": "ncpmount en ncpfs v2.2.6 y anteriores no eliminan el fichero lock /etc/mtab~ despu\u00e9s de un intento fallido para a\u00f1adir un punto de montaje, lo cual tiene un impacto no especificado y un vector de ataque local"}], "id": "CVE-2011-1680", "lastModified": "2017-08-17T01:34:19.197", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-04-10T02:55:02.493", "references": [{"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/04/10"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/04/11"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/04/12"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/04/9"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/05/3"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/05/7"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/07/9"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/14/16"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/14/5"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/14/7"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/15/6"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/22/4"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/22/6"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://openwall.com/lists/oss-security/2011/03/31/3"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/03/31/4"}, {"source": "cve@mitre.org", "url": "http://openwall.com/lists/oss-security/2011/04/01/2"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688980"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66700"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}