13 matches found
EUVD-2009-0035
Malware in sbrugna...
SUSE CVE-2009-0022
Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name...
openSUSE Security Update : cifs-mount (cifs-mount-410)
This update fixes a bug that allowed the client to retrieve arbitrary memory content from the server process. CVE-2008-4314 Additionally another bug was fixed that affects environments that enabled registry shares by setting 'registry shares = yes'. In this case an authenticated user is...
Ubuntu 8.10 : samba vulnerability (USN-702-1)
Gunter Hockel discovered that Samba with registry shares enabled did not properly validate share names. An authenticated user could gain access to the root filesystem by using an older version of smbclient and specifying an empty string as a share name. This is only an issue if registry shares ar...
Ubuntu USN-702-1 (samba)
The remote host is missing an update to samba announced via advisory USN-702-1. OpenVAS Vulnerability Test $Id: ubuntu7021.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7021.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-702-1 samba Authors: Thomas Reinke...
Ubuntu: Security Advisory (USN-702-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Samba directory traversal
Root filesystem access is possible if "registry shares = yes" option is enabled...
[USN-702-1] Samba vulnerability
=========================================================== Ubuntu Security Notice USN-702-1 January 05, 2009 samba vulnerability CVE-2009-0022 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also applie...
CVE-2009-0022
Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name...
DEBIAN-CVE-2009-0022
Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name...
CVE-2009-0022
Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name...
CVE-2009-0022
Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name...
Potential access to "/" in setups with
Description When connecting to a share called "" empty string using an older version of smbclient before 3.0.28 for example with: 'smbclient //server/ -U user%pass' access to the root filesystem is granted with the privileges of the authenticated user. This only happens in setups with registry...