CVE-2011-1585
Published: 06 October 2011
The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user.
From the Ubuntu security team
It was discovered that CIFS incorrectly handled authentication. When a user had a CIFS share mounted that required authentication, a local user could mount the same share without knowing the correct password.
Priority
Status
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1585
- https://rhn.redhat.com/errata/RHSA-2011-1253.html
- https://usn.ubuntu.com/usn/usn-1203-1
- https://usn.ubuntu.com/usn/usn-1208-1
- https://usn.ubuntu.com/usn/usn-1216-1
- https://usn.ubuntu.com/usn/usn-1218-1
- https://usn.ubuntu.com/usn/usn-1256-1
- https://usn.ubuntu.com/usn/usn-1268-1
- https://usn.ubuntu.com/usn/usn-1272-1
- https://usn.ubuntu.com/usn/usn-1271-1
- https://usn.ubuntu.com/usn/usn-1278-1
- https://usn.ubuntu.com/usn/usn-1280-1
- NVD
- Launchpad
- Debian