Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-4475HistoryNov 13, 2013 - 3:55 p.m.
CVE-2013-4475
2013-11-1315:55:00
Debian Security Bug Tracker
security-tracker.debian.org
7
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.005 Low
EPSS
Percentile
75.8%
Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote attackers to bypass intended file restrictions by leveraging ACL differences between a file and an associated alternate data stream (ADS).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | samba | < 2:4.0.11+dfsg-1 | samba_2:4.0.11+dfsg-1_all.deb |
| Debian | 11 | all | samba | < 2:4.0.11+dfsg-1 | samba_2:4.0.11+dfsg-1_all.deb |
| Debian | 10 | all | samba | < 2:4.0.11+dfsg-1 | samba_2:4.0.11+dfsg-1_all.deb |
| Debian | 999 | all | samba | < 2:4.0.11+dfsg-1 | samba_2:4.0.11+dfsg-1_all.deb |
| Debian | 13 | all | samba | < 2:4.0.11+dfsg-1 | samba_2:4.0.11+dfsg-1_all.deb |
Related
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0348)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0839-1)
2021-06-09 00:00:00
Samba >= 3.2.0 Bypass File Restriction Vulnerability (CVE-2013-4475)
2021-09-24 00:00:00
nessus
nessus
Fedora 19 : samba-4.0.11-1.fc19 (2013-21094)
2013-11-21 00:00:00
Fedora 20 : samba-4.1.1-1.fc20 (2013-21088)
2013-11-26 00:00:00
openSUSE Security Update : samba (openSUSE-SU-2013:1787-1)
2014-06-13 00:00:00
ubuntucve
ubuntucve
CVE-2013-4475
2013-11-13 00:00:00
f5
f5
SOL15874 - Samba vulnerability CVE-2013-4475
2014-12-01 00:00:00
K15874 : Samba vulnerability CVE-2013-4475
2014-12-02 00:00:00
prion
prion
Design/Logic Flaw
2013-11-13 15:55:00
securityvulns
securityvulns
[ MDVSA-2013:278 ] samba
2013-11-26 00:00:00
Samba protection bypass
2013-11-26 00:00:00
Samba buffer overflow
2014-01-08 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: samba-4.1.1-1.fc20
2013-11-26 04:10:12
[SECURITY] Fedora 19 Update: samba-4.0.11-1.fc19
2013-11-21 04:37:11
[SECURITY] Fedora 19 Update: samba-4.0.13-1.fc19
2013-12-15 03:35:27
cve
cve
CVE-2013-4475
2013-11-13 15:55:00
samba
samba
ACLs are not checked on opening an alternate
2013-11-11 00:00:00
mageia
mageia
Updated samba packages fix CVE-2013-4475
2013-11-22 23:10:41
freebsd
freebsd
osv
osv
samba - several
2013-12-09 00:00:00
veracode
veracode
Privilege Escalation
2019-05-02 05:00:33
centos
centos
libsmbclient, samba, samba3x security update
2013-12-10 01:03:24
oraclelinux
oraclelinux
samba and samba3x security update
2013-12-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package samba-DC version 4.0.11-alt1
2013-11-12 00:00:00
Security fix for the ALT Linux 8 package samba version 4.0.11-alt1
2013-11-12 00:00:00
Security fix for the ALT Linux 10 package samba version 4.0.11-alt1
2013-11-12 00:00:00
redhat
redhat
(RHSA-2014:0009) Important: samba security update
2014-01-06 00:00:00
(RHSA-2013:1806) Important: samba and samba3x security update
2013-12-09 00:00:00
debian
debian
[SECURITY] [DSA 2812-1] samba security update
2013-12-09 10:13:23
slackware
slackware
[slackware-security] samba
2013-11-19 01:51:01
suse
suse
Security update for Samba (important)
2014-01-07 00:04:36
ubuntu
ubuntu
Samba vulnerabilities
2013-12-11 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2015-02-25 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.005 Low
EPSS
Percentile
75.8%
Related for DEBIANCVE:CVE-2013-4475