The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCALL is enabled, relies on a user's keyring for the dns_resolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform arbitrary CIFS mounts via vectors involving an add_key call, related to a "cache stuffing" issue and MS-DFS referrals.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
No history.
Information
Published : 2010-09-08 20:00
Updated : 2024-02-28 11:41
NVD link : CVE-2010-2524
Mitre link : CVE-2010-2524
CVE.ORG link : CVE-2010-2524
JSON object : View
Products Affected
linux
- linux_kernel
canonical
- ubuntu_linux
suse
- suse_linux_enterprise_server
- suse_linux_enterprise_desktop
vmware
- esx
CWE