TROYANOSYVIRUS
Volver a CVEs

CVE-2007-3843

N/A

Descripcion

The Linux kernel before 2.6.23-rc1 checks the wrong global variable for the CIFS sec mount option, which might allow remote attackers to spoof CIFS network traffic that the client configured for security signatures, as demonstrated by lack of signing despite sec=ntlmv2i in a SetupAndX request.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado8/9/2007
Ultima modificacion4/23/2026
Fuentenvd
Avistamientos honeypot0

Productos afectados

linux:linux_kernel

Referencias

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=246595(secalert@redhat.com)
http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.23-rc1(secalert@redhat.com)
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html(secalert@redhat.com)
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html(secalert@redhat.com)
http://secunia.com/advisories/26366(secalert@redhat.com)
http://secunia.com/advisories/26647(secalert@redhat.com)
http://secunia.com/advisories/26760(secalert@redhat.com)
http://secunia.com/advisories/27436(secalert@redhat.com)
http://secunia.com/advisories/27747(secalert@redhat.com)
http://secunia.com/advisories/27912(secalert@redhat.com)
http://secunia.com/advisories/28806(secalert@redhat.com)
http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm(secalert@redhat.com)
http://www.debian.org/security/2007/dsa-1363(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2007-0705.html(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2007-0939.html(secalert@redhat.com)
http://www.securityfocus.com/bid/25244(secalert@redhat.com)
http://www.ubuntu.com/usn/usn-510-1(secalert@redhat.com)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9670(secalert@redhat.com)
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=246595(af854a3a-2127-422b-91ae-364da2661108)
http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.23-rc1(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00001.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/26366(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/26647(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/26760(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/27436(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/27747(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/27912(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/28806(af854a3a-2127-422b-91ae-364da2661108)
http://support.avaya.com/elmodocs2/security/ASA-2007-474.htm(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2007/dsa-1363(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2007-0705.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2007-0939.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/25244(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-510-1(af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9670(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.