Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-0473HistoryFeb 03, 2007 - 11:28 p.m.
CVE-2007-0473
2007-02-0323:28:00
Debian Security Bug Tracker
security-tracker.debian.org
9
0.0004 Low
EPSS
Percentile
14.8%
The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 does not preserve /etc/sudoers permissions across modifications, which allows local users to obtain sensitive information (/etc/sudoers contents) by reading this file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | smb4k | < 0.8.0-1 | smb4k_0.8.0-1_all.deb |
| Debian | 11 | all | smb4k | < 0.8.0-1 | smb4k_0.8.0-1_all.deb |
| Debian | 10 | all | smb4k | < 0.8.0-1 | smb4k_0.8.0-1_all.deb |
| Debian | 999 | all | smb4k | < 0.8.0-1 | smb4k_0.8.0-1_all.deb |
| Debian | 13 | all | smb4k | < 0.8.0-1 | smb4k_0.8.0-1_all.deb |
Related
cvelist
cvelist
CVE-2007-0473
2007-02-03 23:00:00
ubuntucve
ubuntucve
CVE-2007-0473
2007-02-03 00:00:00
prion
prion
Arbitrary file deletion
2007-02-03 23:28:00
cve
cve
CVE-2007-0473
2007-02-03 23:28:00
nessus
nessus
GLSA-200703-09 : Smb4K: Multiple vulnerabilities
2007-03-12 00:00:00
Mandrake Linux Security Advisory : smb4k (MDKSA-2007:042)
2007-02-18 00:00:00
securityvulns
securityvulns
Smb4K multiple privilege escalations
2007-02-04 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200703-09 (smb4k)
2008-09-24 00:00:00
Mandriva Update for smb4k MDKSA-2007:042 (smb4k)
2009-04-09 00:00:00
Mandriva Update for smb4k MDKSA-2007:042 (smb4k)
2009-04-09 00:00:00
gentoo
gentoo
Smb4K: Multiple vulnerabilities
2007-03-09 00:00:00