4 matches found
SUSE CVE-2013-6442
The ownerset function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended...
The vulnerability of Samba software allows a remote attacker to compromise the confidentiality and integrity of protected information.
A vulnerability exists in the ownerset function in smbcacls.c within smbcacls in Samba, due to the deletion of the access control list when the --chown or --chgrp parameter is used. Exploiting this vulnerability allows malicious actors to circumvent access restrictions by making unauthorized...
samba: smbcacls will delete ACL lists in certain circumstances
The ownerset function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended...
DEBIAN-CVE-2013-6442
The ownerset function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended...