Vulnerabilities > Ncpfs > Ncpfs > 2.2.6

DATE CVE VULNERABILITY TITLE RISK
2010-03-10 CVE-2010-0791 Permissions, Privileges, and Access Controls vulnerability in Ncpfs 2.2.6
The (1) ncpmount, (2) ncpumount, and (3) ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service (application failure) via unspecified vectors that trigger the creation of a /etc/mtab~ file that persists after the program exits.
local
low complexity
ncpfs CWE-264
2.1
2.1
2010-03-10 CVE-2010-0790 Information Exposure vulnerability in Ncpfs 2.2.6
sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain detailed error messages about the results of privileged file-access attempts, which allows local users to determine the existence of arbitrary files via the mountpoint name.
local
low complexity
ncpfs CWE-200
2.1
2.1
2010-03-02 CVE-2010-0788 Link Following vulnerability in Ncpfs 2.2.6
ncpfs 2.2.6 allows local users to cause a denial of service, obtain sensitive information, or possibly gain privileges via symlink attacks involving the (1) ncpmount and (2) ncpumount programs.
local
ncpfs CWE-59
4.4
4.4