CVE-2006-1864

{"id": "CVE-2006-1864", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2006-04-26T18:06:00.000", "references": [{"url": "http://secunia.com/advisories/19869", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20237", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20398", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20671", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20716", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20914", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21035", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21476", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21614", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/21745", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/22497", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/22875", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/23064", "source": "secalert@redhat.com"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-161.htm", "source": "secalert@redhat.com"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2006/dsa-1097", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2006/dsa-1103", "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:150", "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:151", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006-05-31.html", "source": "secalert@redhat.com"}, {"url": "http://www.osvdb.org/25067", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0493.html", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0579.html", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0580.html", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0710.html", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/451404/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/451417/100/200/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/451419/100/200/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/451426/100/200/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/17735", "source": "secalert@redhat.com"}, {"url": "http://www.trustix.org/errata/2006/0026", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/usn-302-1", "source": "secalert@redhat.com"}, {"url": "http://www.vmware.com/download/esx/esx-202-200610-patch.html", "source": "secalert@redhat.com"}, {"url": "http://www.vmware.com/download/esx/esx-213-200610-patch.html", "source": "secalert@redhat.com"}, {"url": "http://www.vmware.com/download/esx/esx-254-200610-patch.html", "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2006/2554", "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2006/4502", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189435", "tags": ["Exploit"], "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26137", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11327", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via \"..\\\\\" sequences, a similar vulnerability to CVE-2006-1863."}], "lastModified": "2018-10-18T16:36:51.677", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34E60197-56C3-485C-9609-B1C4A0E0FCB2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1369C4A-EF3B-4805-9046-ADA38ED940C2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC3639E1-B5E4-4DD6-80D4-BA07D192C42D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54393D69-B368-4296-9798-D81570495C6C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6791A801-9E06-47DD-912F-D8594E2F6B3F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE90CCED-3A5B-46E3-A6B0-4865AB786289"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBFF6DE7-6D7C-469A-9B2D-2F6E915F55B0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86E452E4-45A9-4469-BF69-F40B6598F0EA"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5751AC4-A60F-42C6-88E5-FC8CFEE6F696"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FF886A6-7E73-47AD-B6A5-A9EC5BEDCD0C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48777A01-8F36-4752-8F7A-1D1686C69A33"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E51F0211-2D3E-4260-AD63-E83AE4EC4AF8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C4E1245-C6BB-462C-9E27-C608595DAE3C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.16_rc7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E55F2549-F813-4BD6-8933-6788D898ECB1"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}