Smb4k sudoers Symlink Arbitrary File Access

ID OSVDB:19167
Type osvdb
Reporter OSVDB
Modified 2005-08-31T07:20:25


Technical Description

The vendor fix implemented in version 0.6.3 was not adequate to prevent this issue from being exploited.

Solution Description

Upgrade to version 0.6.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.


Vendor URL: Security Tracker: 1014862 Secunia Advisory ID:16736 Secunia Advisory ID:17636 Secunia Advisory ID:16724 Related OSVDB ID: 19166 Other Advisory URL: Other Advisory URL: Other Advisory URL: CVE-2005-2851 Bugtraq ID: 14756