ID:3716 - Exploit for Information disclosure - CVE-2012-1586
Published: August 4, 2020
Vulnerability identifier: #VU33118
Vulnerability risk: Low
CVE-ID: CVE-2012-1586
CWE-ID: CWE-200
Exploitation vector: Local access
Vulnerable software:
Link to public exploit:
Vulnerability description
The vulnerability allows a local non-authenticated attacker to gain access to sensitive information.
mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error message.
Remediation
Install update from vendor's website.