Home > Vulnerability Database > CVE-2010-0547

Mend.io Vulnerability Database

CVE-2010-0547

Date: February 4, 2010

client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string.

Language: C

Severity Score

4.0

Related Resources (12)

Url: http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

Url: https://nvd.nist.gov/vuln/detail/CVE-2010-0547

Url: http://www.securityfocus.com/bid/38326

Url: http://www.vupen.com/english/advisories/2010/1062

Url: https://access.redhat.com/security/cve/CVE-2010-0547

Url: http://security.gentoo.org/glsa/glsa-201206-29.xml

Url: http://git.samba.org/?p=samba.git%3Ba=commit%3Bh=a065c177dfc8f968775593ba00dffafeebb2e054

Url: http://secunia.com/advisories/39317

Url: http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2010-0547

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2010:090

Url: https://www.mend.io/vulnerability-database/CVE-2010-0547

Severity Score

4.0

Weakness Type (CWE)

Input Validation

CWE-20

CVSS v3.1

Base Score:	4.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2010-0547

Date: February 4, 2010

Language: C

Severity Score

Related Resources (12)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?