2 matches found
Samba idmap_ad.so Winbind nss_info Extension Local Privilege Escalation
According to its banner, the version of the Samba server installed on the remote host is affected by a local privilege escalation vulnerability. Specifically, the Winbind nssinfo extension, when the 'winbind nss info' option is set to 'rfc2307' or 'sfu', grants local users the privileges of gid 0...
CVE-2007-4138
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...