nvd-json-data-feeds/CVE-2006/CVE-2006-18xx/CVE-2006-1864.json

{
  "id": "CVE-2006-1864",
  "sourceIdentifier": "secalert@redhat.com",
  "published": "2006-04-26T18:06:00.000",
  "lastModified": "2018-10-18T16:36:51.677",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via \"..\\\\\" sequences, a similar vulnerability to CVE-2006-1863."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "accessVector": "LOCAL",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": true,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "34E60197-56C3-485C-9609-B1C4A0E0FCB2"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "D1369C4A-EF3B-4805-9046-ADA38ED940C2"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "CC3639E1-B5E4-4DD6-80D4-BA07D192C42D"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "54393D69-B368-4296-9798-D81570495C6C"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "6791A801-9E06-47DD-912F-D8594E2F6B3F"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc5:*:*:*:*:*:*",
              "matchCriteriaId": "AE90CCED-3A5B-46E3-A6B0-4865AB786289"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc6:*:*:*:*:*:*",
              "matchCriteriaId": "CBFF6DE7-6D7C-469A-9B2D-2F6E915F55B0"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "86E452E4-45A9-4469-BF69-F40B6598F0EA"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5751AC4-A60F-42C6-88E5-FC8CFEE6F696"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FF886A6-7E73-47AD-B6A5-A9EC5BEDCD0C"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "48777A01-8F36-4752-8F7A-1D1686C69A33"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "E51F0211-2D3E-4260-AD63-E83AE4EC4AF8"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C4E1245-C6BB-462C-9E27-C608595DAE3C"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16_rc7:*:*:*:*:*:*:*",
              "matchCriteriaId": "E55F2549-F813-4BD6-8933-6788D898ECB1"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.debian.org/security/2006/dsa-1097",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.debian.org/security/2006/dsa-1103",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:150",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:151",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.novell.com/linux/security/advisories/2006-05-31.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0493.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0579.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0580.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0710.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.securityfocus.com/archive/1/451404/100/0/threaded",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.securityfocus.com/archive/1/451417/100/200/threaded",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.securityfocus.com/archive/1/451419/100/200/threaded",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.securityfocus.com/archive/1/451426/100/200/threaded",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.securityfocus.com/bid/17735",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.trustix.org/errata/2006/0026",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.ubuntu.com/usn/usn-302-1",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.vmware.com/download/esx/esx-202-200610-patch.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.vmware.com/download/esx/esx-213-200610-patch.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.vmware.com/download/esx/esx-254-200610-patch.html",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2006/2554",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2006/4502",
      "source": "secalert@redhat.com"
    },
    {
      "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189435",
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ]
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26137",
      "source": "secalert@redhat.com"
    },
    {
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11327",
      "source": "secalert@redhat.com"
    }
  ]
}
bootstrap 2023-04-24 12:24:31 +02:00			`{`
			`"id": "CVE-2006-1864",`
			`"sourceIdentifier": "secalert@redhat.com",`
			`"published": "2006-04-26T18:06:00.000",`
			`"lastModified": "2018-10-18T16:36:51.677",`
			`"vulnStatus": "Modified",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via \"..\\\\\" sequences, a similar vulnerability to CVE-2006-1863."`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV2": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"cvssData": {`
			`"version": "2.0",`
			`"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",`
			`"accessVector": "LOCAL",`
			`"accessComplexity": "LOW",`
			`"authentication": "NONE",`
			`"confidentialityImpact": "PARTIAL",`
			`"integrityImpact": "PARTIAL",`
			`"availabilityImpact": "PARTIAL",`
			`"baseScore": 4.6`
			`},`
			`"baseSeverity": "MEDIUM",`
			`"exploitabilityScore": 3.9,`
			`"impactScore": 6.4,`
			`"acInsufInfo": false,`
			`"obtainAllPrivilege": false,`
			`"obtainUserPrivilege": false,`
			`"obtainOtherPrivilege": true,`
			`"userInteractionRequired": false`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "NVD-CWE-Other"`
			`}`
			`]`
			`}`
			`],`
			`"configurations": [`
			`{`
			`"nodes": [`
			`{`
			`"operator": "OR",`
			`"negate": false,`
			`"cpeMatch": [`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:::::::*",`
			`"matchCriteriaId": "34E60197-56C3-485C-9609-B1C4A0E0FCB2"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc1::::::",`
			`"matchCriteriaId": "D1369C4A-EF3B-4805-9046-ADA38ED940C2"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc2::::::",`
			`"matchCriteriaId": "CC3639E1-B5E4-4DD6-80D4-BA07D192C42D"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc3::::::",`
			`"matchCriteriaId": "54393D69-B368-4296-9798-D81570495C6C"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc4::::::",`
			`"matchCriteriaId": "6791A801-9E06-47DD-912F-D8594E2F6B3F"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc5::::::",`
			`"matchCriteriaId": "AE90CCED-3A5B-46E3-A6B0-4865AB786289"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc6::::::",`
			`"matchCriteriaId": "CBFF6DE7-6D7C-469A-9B2D-2F6E915F55B0"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:::::::*",`
			`"matchCriteriaId": "86E452E4-45A9-4469-BF69-F40B6598F0EA"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:::::::*",`
			`"matchCriteriaId": "C5751AC4-A60F-42C6-88E5-FC8CFEE6F696"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.3:::::::*",`
			`"matchCriteriaId": "1FF886A6-7E73-47AD-B6A5-A9EC5BEDCD0C"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.4:::::::*",`
			`"matchCriteriaId": "48777A01-8F36-4752-8F7A-1D1686C69A33"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.7:::::::*",`
			`"matchCriteriaId": "E51F0211-2D3E-4260-AD63-E83AE4EC4AF8"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.8:::::::*",`
			`"matchCriteriaId": "4C4E1245-C6BB-462C-9E27-C608595DAE3C"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16_rc7:::::::*",`
			`"matchCriteriaId": "E55F2549-F813-4BD6-8933-6788D898ECB1"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.debian.org/security/2006/dsa-1097",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.debian.org/security/2006/dsa-1103",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:150",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:151",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.novell.com/linux/security/advisories/2006-05-31.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.redhat.com/support/errata/RHSA-2006-0493.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.redhat.com/support/errata/RHSA-2006-0579.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.redhat.com/support/errata/RHSA-2006-0580.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.redhat.com/support/errata/RHSA-2006-0710.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/archive/1/451404/100/0/threaded",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/archive/1/451417/100/200/threaded",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/archive/1/451419/100/200/threaded",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/archive/1/451426/100/200/threaded",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/bid/17735",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.trustix.org/errata/2006/0026",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.ubuntu.com/usn/usn-302-1",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.vmware.com/download/esx/esx-202-200610-patch.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.vmware.com/download/esx/esx-213-200610-patch.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.vmware.com/download/esx/esx-254-200610-patch.html",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.vupen.com/english/advisories/2006/2554",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "http://www.vupen.com/english/advisories/2006/4502",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189435",`
			`"source": "secalert@redhat.com",`
			`"tags": [`
			`"Exploit"`
			`]`
			`},`
			`{`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26137",`
			`"source": "secalert@redhat.com"`
			`},`
			`{`
			`"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11327",`
			`"source": "secalert@redhat.com"`
			`}`
			`]`
			`}`