CVE-2010-0296


Severity : High
Published : 2010-06-01
Modified : 2011-10-25
Base Score : 7.2
Details : The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a crafted mount request.
Product/Version : Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
CGE 5.x  
Mobilinux 5.x  
Pro 5.0  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
MVL6 Toolchain 4.3  
 
 
 


CVE Vulnerabilities List CVE-2010