Vulnerabilities > Ncpfs > Ncpfs > 2.2.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-04-10 | CVE-2011-1680 | Permissions, Privileges, and Access Controls vulnerability in Ncpfs ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors. | 4.4 |
| 2011-04-10 | CVE-2011-1679 | Improper Input Validation vulnerability in Ncpfs ncpfs 2.2.6 and earlier attempts to use (1) ncpmount to append to the /etc/mtab file and (2) ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. | 3.3 |
| 2005-05-02 | CVE-2005-0014 | Remote vulnerability in NCPFS Buffer overflow in ncplogin in ncpfs before 2.2.6 allows remote malicious NetWare servers to execute arbitrary code on the NetWare client. | 7.5 |
| 2005-05-02 | CVE-2005-0013 | Remote vulnerability in NCPFS nwclient.c in ncpfs before 2.2.6 does not drop root privileges before executing utilities using the NetWare client functions, which allows local users to gain privileges. | 7.2 |
| 2005-01-10 | CVE-2004-1079 | Local Buffer Overflow vulnerability in NCPFS Buffer overflow in (1) ncplogin and (2) ncpmap in nwclient.c for ncpfs 2.2.4, and possibly other versions, may allow local users to gain privileges via a long -T option. | 7.2 |