CVE-2010-0747: Samba mount.cifs symlink

2010-05-07T00:00:00
ID CVE-2010-0747
Type cve
Reporter NVD
Modified 2010-05-07T00:00:00

Description

Samba could allow a local attacker to launch a symlink attack. The mount.cifs.c utility creates temporary files insecurely. A local attacker could exploit this vulnerability to mount a CIFS share on an arbitrary mountpoint and creating a symbolic link from a temporary file to the mountpoint directory file, which could allow the attacker to gain elevated privileges on the system.