Lucene search

[email protected]CVE-2001-1162

HistoryJun 23, 2001 - 4:00 a.m.

CVE-2001-1162

2001-06-2304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

samba

vulnerability

cve-2001-1162

configuration file

remote attacker

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.6%

JSON

Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a … in a NETBIOS name, which is used as the name for a .log file.

CPENameOperatorVersion
samba:sambasambaeq2.0.6
samba:sambasambaeq2.0.9
samba:sambasambaeq2.0.7
samba:sambasambaeq2.0.8
samba:sambasambaeq2.0.5
samba:sambasambaeq2.2.0
hp:cifs-9000_serverhp cifs-9000 servereqa.01.06
hp:cifs-9000_serverhp cifs-9000 servereqa.01.05

CPE	Name	Operator	Version
samba:samba	samba	eq	2.0.6
samba:samba	samba	eq	2.0.9
samba:samba	samba	eq	2.0.7
samba:samba	samba	eq	2.0.8
samba:samba	samba	eq	2.0.5
samba:samba	samba	eq	2.2.0
hp:cifs-9000_server	hp cifs-9000 server	eq	a.01.06
hp:cifs-9000_server	hp cifs-9000 server	eq	a.01.05

References

ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P

ciac.llnl.gov/ciac/bulletins/l-105.shtml

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000405

download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01

us1.samba.org/samba/whatsnew/macroexploit.html

www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt

www.debian.org/security/2001/dsa-065

www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3

www.redhat.com/support/errata/RHSA-2001-086.html

www.securityfocus.com/advisories/3423

www.securityfocus.com/archive/1/193027

www.securityfocus.com/bid/2928

exchange.xforce.ibmcloud.com/vulnerabilities/6731

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.6%

JSON

Related for CVE-2001-1162

openvas2 nessus3 cvelist1