Lucene search

PRIOn knowledge basePRION:CVE-2010-0728

HistoryMar 10, 2010 - 8:13 p.m.

Input validation

2010-03-1020:13:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

72.2%

JSON

smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client.

CPENameOperatorVersion
sambaeq3.4.6
sambaeq3.3.11
sambaeq3.5.0

Name	Operator	Version
samba	eq	3.4.6
samba	eq	3.3.11
samba	eq	3.5.0

References

bugzilla.samba.org/show_bug.cgi?id=7222

lists.samba.org/archive/samba-announce/2010/000211.html

www.samba.org/samba/history/samba-3.3.12.html

www.samba.org/samba/history/samba-3.4.7.html

www.samba.org/samba/history/samba-3.5.1.html

www.samba.org/samba/security/CVE-2010-0728

6.6 Medium

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

72.2%

JSON

Related for PRION:CVE-2010-0728