Lucene search

PRIOn knowledge basePRION:CVE-2010-0926

HistoryMar 10, 2010 - 8:13 p.m.

Directory traversal

2010-03-1020:13:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.023 Low

EPSS

Percentile

89.3%

JSON

The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by using the symlink command in smbclient to create a symlink containing … (dot dot) sequences, related to the combination of the unix extensions and wide links options.

CPENameOperatorVersion
sambaeq3.3.3
sambaeq3.4.2
sambaeq3.4.0
sambaeq3.3.9
sambaeq3.4.5
sambaeq3.3.4
sambaeq3.3.7
sambaeq3.4.1
sambaeq3.3.1
sambaeq3.3.0

Name	Operator	Version
samba	eq	3.3.3
samba	eq	3.4.2
samba	eq	3.4.0
samba	eq	3.3.9
samba	eq	3.4.5
samba	eq	3.3.4
samba	eq	3.3.7
samba	eq	3.4.1
samba	eq	3.3.1
samba	eq	3.3.0

Rows per page:

1-10 of 181

References

archives.neohapsis.com/archives/fulldisclosure/2010-02/0083.html

archives.neohapsis.com/archives/fulldisclosure/2010-02/0107.html

archives.neohapsis.com/archives/fulldisclosure/2010-02/0108.html

blog.metasploit.com/2010/02/exploiting-samba-symlink-traversal.html

lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

secunia.com/advisories/39317

www.openwall.com/lists/oss-security/2010/02/06/3

www.openwall.com/lists/oss-security/2010/03/05/3

bugzilla.redhat.com/show_bug.cgi?id=562568

bugzilla.samba.org/show_bug.cgi?id=7104

gitweb.samba.org/?p=samba.git%3Ba=commit%3Bh=bd269443e311d96ef495a9db47d1b95eb83bb8f4

marc.info/?l=full-disclosure&m=126538598820903&w=2

marc.info/?l=oss-security&m=126539592603079&w=2

marc.info/?l=oss-security&m=126540402215620&w=2

marc.info/?l=oss-security&m=126540733320471&w=2

marc.info/?l=oss-security&m=126545363428745&w=2

marc.info/?l=oss-security&m=126777580624790&w=2

marc.info/?l=samba-technical&m=126539387432412&w=2

marc.info/?l=samba-technical&m=126540011609753&w=2

marc.info/?l=samba-technical&m=126540100511357&w=2

marc.info/?l=samba-technical&m=126540248613395&w=2

marc.info/?l=samba-technical&m=126540277713815&w=2

marc.info/?l=samba-technical&m=126540290614053&w=2

marc.info/?l=samba-technical&m=126540376915283&w=2

marc.info/?l=samba-technical&m=126540475116511&w=2

marc.info/?l=samba-technical&m=126540477016522&w=2

marc.info/?l=samba-technical&m=126540539117328&w=2

marc.info/?l=samba-technical&m=126540608318301&w=2

marc.info/?l=samba-technical&m=126540695819735&w=2

marc.info/?l=samba-technical&m=126547903723628&w=2

marc.info/?l=samba-technical&m=126548356728379&w=2

marc.info/?l=samba-technical&m=126549111204428&w=2

marc.info/?l=samba-technical&m=126555346721629&w=2

www.samba.org/samba/news/symlink_attack.html

6.6 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.023 Low

EPSS

Percentile

89.3%

JSON

Related for PRION:CVE-2010-0926