Lucene search
K

13 matches found

OpenVAS
OpenVAS
added 2021/09/24 12:0 a.m.19 views

Samba 3.0.25 <= 3.0.25c Vulnerability (CVE-2007-4138)

Incorrect primary group assignment domain users using the rfc2307 or sfu winbind nss info plugin. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

6.9CVSS6.5AI score0.00724EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.35 views

Oracle: Security Advisory (ELSA-2007-1017)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.7AI score0.1125EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.35 views

Oracle Linux 4 : samba (ELSA-2007-1016)

From Red Hat Security Advisory 2007:1016 : Updated samba packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Samba is a suite of programs used by machines t...

9.3CVSS8.9AI score0.1125EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.30 views

Slackware: Security Advisory (SSA:2007-255-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7.6AI score0.00724EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.38 views

Solaris Update for Samba 119757-16

Check for the Version of Samba OpenVAS Vulnerability Test Solaris Update for Samba 119757-16 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the...

10CVSS0.5AI score0.77806EPSS
Exploits43References2
Tenable Nessus
Tenable Nessus
added 2007/11/16 12:0 a.m.41 views

RHEL 5 : samba (RHSA-2007:1017)

Updated samba packages that fix security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Samba is a suite of programs used by machines to share files, printers, and other information. A...

9.3CVSS8.9AI score0.1125EPSS
Exploits3References7
OSV
OSV
added 2007/09/14 1:17 a.m.8 views

CVE-2007-4138

The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...

6.9CVSS6.1AI score0.00724EPSS
Exploits1References20
Cvelist
Cvelist
added 2007/09/14 1:0 a.m.25 views

CVE-2007-4138

The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...

5.9AI score0.00724EPSS
Exploits1References19
Debian CVE
Debian CVE
added 2007/09/14 1:0 a.m.26 views

CVE-2007-4138

The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...

6.9CVSS4.1AI score0.00724EPSS
Exploits1
CVE
CVE
added 2007/09/14 1:0 a.m.97 views

CVE-2007-4138

CVE-2007-4138 affects Samba 3.0.25 through 3.0.25c. The Winbind nss_info extension (nsswitch/idmap_ad.c) can grant all local users the privileges of gid 0 when winbind nss info is set to RFC2307 or SFU and the primary group attribute is not defined. This is a local privilege escalation vulnerabil...

6.9CVSS5.9AI score0.00724EPSS
Exploits1References19Affected Software1
Slackware Linux
Slackware Linux
added 2007/09/12 9:56 p.m.38 views

[slackware-security] samba

New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, and 12.0 to fix a security issue and various other bugs. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-4138 Here are the details from the...

6.9CVSS6.3AI score0.00724EPSS
Exploits1
seebug.org
seebug.org
added 2007/09/12 12:0 a.m.79 views

Samba NSS_Info插件本地权限提升漏洞

BUGTRAQ ID: 25636 CVECAN ID: CVE-2007-4138 Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。 idmapad.so库中为Winbind提供了nssinfo扩展用于从活动目录域控制台检索用户的主目录路径、登录shell和主组id等,可通过将winbind nss info的smb.conf选项定义为sfu或rfc2307来启用这个功能。 Windows的Identity Management for Unix和Services for Unix...

6.9CVSS0.9AI score0.00724EPSS
Exploits1
ALT Linux
ALT Linux
added 2007/09/11 12:0 a.m.21 views

Security fix for the ALT Linux 5 package samba version 3.0.26a-alt1

Sept. 11, 2007 Alexander Bokovoy 3.0.26a-alt1 - Bugfix release - Includes security fix for CVE-2007-4138...

6.9CVSS6.2AI score0.00724EPSS
Exploits1
Rows per page
Query Builder