Description
mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message.
Exploits (1)
References (5)
Core 5
Core References
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00024.html
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/03/27/6
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/03/27/1
Issue Tracking x_refsource_confirm
https://bugzilla.samba.org/show_bug.cgi?id=8821
Issue Tracking x_refsource_misc
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=665923
Scores
EPSS
0.0061
EPSS Percentile
69.8%
Details
CWE
CWE-200
Status
published
Products (1)
debian/cifs-utils
2.6
Published
Aug 27, 2012
Tracked Since
Feb 18, 2026