Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-2948HistoryOct 07, 2009 - 6:30 p.m.
CVE-2009-2948
2009-10-0718:30:00
Debian Security Bug Tracker
security-tracker.debian.org
13
1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
26.8%
mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2, when mount.cifs is installed suid root, does not properly enforce permissions, which allows local users to read part of the credentials file and obtain the password by specifying the path to the credentials file and using the --verbose or -v option.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 11 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 10 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 999 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 13 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
Related
prion
prion
Path traversal
2009-10-07 18:30:00
seebug
seebug
Samba setuid mount.cifs信息泄露漏洞
2009-10-12 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:39:58
samba
samba
Information disclosure by setuid mount.cifs
2009-10-01 00:00:00
ubuntucve
ubuntucve
CVE-2009-2948
2009-10-07 00:00:00
cve
cve
CVE-2009-2948
2009-10-07 18:30:00
nessus
nessus
Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / current : samba (SSA:2009-276-01)
2011-05-28 00:00:00
Fedora 10 : samba-3.2.15-0.36.fc10 (2009-10172)
2009-10-05 00:00:00
SuSE 11 Security Update : Samba (SAT Patch Number 1352)
2011-01-21 00:00:00
osv
osv
samba - several vulnerabilities
2009-10-14 00:00:00
openvas
openvas
Fedora Core 11 FEDORA-2009-10180 (samba)
2009-10-06 00:00:00
Slackware: Security Advisory (SSA:2009-276-01)
2012-09-10 00:00:00
Slackware Advisory SSA:2009-276-01 samba
2012-09-11 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: samba-3.4.2-0.42.fc11
2009-10-03 18:59:38
[SECURITY] Fedora 11 Update: samba-3.4.5-0.47.fc11
2010-01-29 03:24:41
[SECURITY] Fedora 11 Update: samba-3.4.7-0.50.fc11
2010-03-10 06:46:46
altlinux
altlinux
Security fix for the ALT Linux 5 package samba version 3.0.37-alt1
2009-10-01 00:00:00
Security fix for the ALT Linux 6 package samba version 3.0.37-alt1
2009-10-01 00:00:00
slackware
slackware
samba
2009-10-04 00:01:26
securityvulns
securityvulns
Samba multiple security vulnerabilities
2009-10-14 00:00:00
[SECURITY] [DSA 1908-1] New samba packages fix several vulnerabilities
2009-10-14 00:00:00
debian
debian
[SECURITY] [DSA 1908-1] New samba packages fix several vulnerabilities
2009-10-14 02:05:13
redhat
redhat
(RHSA-2009:1529) Moderate: samba security update
2009-10-27 00:00:00
(RHSA-2009:1585) Moderate: samba3x security and bug fix update
2009-11-16 00:00:00
oraclelinux
oraclelinux
samba security update
2009-10-27 00:00:00
centos
centos
samba security update
2009-10-27 19:23:21
vmware
vmware
ESX Service Console updates for samba and acpid
2010-04-01 00:00:00
ESX Service Console updates for samba and acpid
2010-04-01 00:00:00
ubuntu
ubuntu
Samba vulnerabilities
2009-10-01 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2012-06-24 00:00:00
1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
26.8%
Related for DEBIANCVE:CVE-2009-2948