CVE-2012-1586

Loading...

General

Score:2.1/10.0
Severity:Low
Category:Information Leak / Disclosure
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:None
Availability:None

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2012-1568, CVE-2012-2111, CVE-2013-0213, CVE-2013-0214

Published on 28/08/12 - Updated on 28/08/12

Description

mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message.

Category: Information Leak / Disclosure

CWE-200 (Information Exposure)
An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.

Security Notices

US National Vulnerability DatabaseCVE-2012-1586
SUSE SUSE-SU-2012:0571, SUSE-SU-2012:0575, SUSE-SU-2013:0325

Exploits

Exploit-DBEDB-18783

Relative technologies

VendorProduct
debiancifs-utils

Share this vulnerability with:

Twitter Facebook LinkedIn Mail