Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-0787
HistoryMar 02, 2010 - 6:30 p.m.

CVE-2010-0787

2010-03-0218:30:01
CWE-59
[email protected]
web.nvd.nist.gov
6

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

4.7

Confidence

High

EPSS

0.001

Percentile

26.9%

JSON

client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file.

Affected configurations

Nvd
Node
sambasambaMatch3.0.22
OR
sambasambaMatch3.0.28a
OR
sambasambaMatch3.2.3
OR
sambasambaMatch3.4.0
OR
sambasambaMatch3.4.5
VendorProductVersionCPE
sambasamba3.0.22cpe:2.3:a:samba:samba:3.0.22:*:*:*:*:*:*:*
sambasamba3.0.28acpe:2.3:a:samba:samba:3.0.28a:*:*:*:*:*:*:*
sambasamba3.2.3cpe:2.3:a:samba:samba:3.2.3:*:*:*:*:*:*:*
sambasamba3.4.0cpe:2.3:a:samba:samba:3.4.0:*:*:*:*:*:*:*
sambasamba3.4.5cpe:2.3:a:samba:samba:3.4.5:*:*:*:*:*:*:*

References

Related

ubuntucve 1
cvelist 1
prion 1
nessus 19
debiancve 1
veracode 1
cve 2
openvas 26
gentoo 1
suse 2
ubuntu 1
osv 3
nvd 1
redhat 1
centos 1
oraclelinux 2
vmware 2
ubuntucve
ubuntucve
CVE-2010-0787
2010-03-02 00:00:00
cvelist
cvelist
CVE-2010-0787
2010-03-02 18:00:00
prion
prion
Directory traversal
2010-03-02 18:30:00
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : samba vulnerability (USN-893-1)
2010-01-29 00:00:00
SuSE 10 Security Update : Samba (ZYPP Patch Number 7072)
2010-10-11 00:00:00
Fedora 11 : samba-3.4.7-0.50.fc11 (2010-4050)
2010-07-01 00:00:00
debiancve
debiancve
CVE-2010-0787
2010-03-02 18:30:01
veracode
veracode
Symlink Attack
2020-04-10 00:51:48
cve
cve
CVE-2010-0787
2010-03-02 18:30:01
CVE-2009-3297
2010-03-02 18:30:00
openvas
openvas
Gentoo Security Advisory GLSA 201206-29 (mount-cifs)
2012-08-10 00:00:00
Mandriva Update for openssh MDVA-2010:090 (openssh)
2010-03-12 00:00:00
SuSE Update for samba SUSE-SA:2010:025
2010-07-02 00:00:00
gentoo
gentoo
mount-cifs: Multiple vulnerabilites
2012-06-25 00:00:00
suse
suse
potential remote code execution in samba
2010-07-01 11:11:15
Security update for Samba (critical)
2012-03-09 17:08:16
ubuntu
ubuntu
Samba vulnerability
2010-01-28 00:00:00
osv
osv
samba - several vulnerabilities
2010-02-28 00:00:00
cifs-utils-6.5-1.5 on GA media
2024-06-15 00:00:00
ctdb-4.5.0-1.1 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2009-3297
2010-03-02 18:30:00
redhat
redhat
(RHSA-2011:1219) Moderate: samba security update
2011-08-29 00:00:00
centos
centos
libsmbclient, samba security update
2011-08-29 21:13:06
oraclelinux
oraclelinux
samba security update
2011-08-29 00:00:00
samba security, bug fix, and enhancement update
2012-03-01 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

4.7

Confidence

High

EPSS

0.001

Percentile

26.9%

JSON
Related for NVD:CVE-2010-0787
ubuntucve1cvelist1prion1nessus19debiancve1veracode1cve2openvas26gentoo1suse2ubuntu1osv3nvd1redhat1centos1oraclelinux2vmware2