The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCALL is enabled, relies on a user's keyring for the dns_resolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform arbitrary CIFS mounts via vectors involving an add_key call, related to a "cache stuffing" issue and MS-DFS referrals.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-09-08T19:00:00
Updated: 2018-10-10T18:57:01
Reserved: 2010-06-30T00:00:00
Link: CVE-2010-2524
JSON object: View
NVD Information
Status : Modified
Published: 2010-09-08T20:00:02.823
Modified: 2023-02-13T03:16:50.310
Link: CVE-2010-2524
JSON object: View
Redhat Information
No data.
CWE