CVE-2006-2654
FreeBSD 4.10-6.1 - Local Directory Traversal via SMBFS Chroot Escape
Title source: llmDescription
Directory traversal vulnerability in smbfs smbfs on FreeBSD 4.10 up to 6.1 allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences. NOTE: this is similar to CVE-2006-1864, but this is a different implementation of smbfs, so it has a different CVE identifier.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/25851
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/20390
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/18202
Vendor Advisory vendor-advisory
x_refsource_freebsd
http://security.freebsd.org/advisories/FreeBSD-SA-06:16.smbfs.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016194
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/26860
Scores
EPSS
0.0063
EPSS Percentile
70.6%
Details
Status
published
Products (7)
freebsd/freebsd
5.0 (5 CPE variants)
freebsd/freebsd
5.1 (6 CPE variants)
freebsd/freebsd
5.2
freebsd/freebsd
5.2.1 (3 CPE variants)
freebsd/freebsd
5.3 (4 CPE variants)
freebsd/freebsd
5.4 (5 CPE variants)
freebsd/freebsd
6.0 (3 CPE variants)
Published
Jun 02, 2006
Tracked Since
Feb 18, 2026