Linux Distros Unpatched Vulnerability : CVE-2015-5299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The shadowcopy2getshadowcopydata function in modules/vfsshadowcopy2.c in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not...

The vulnerability of the shadow_copy2_get_shadow_copy_data function in the Samba networking communication software package, related to information disclosure, allows a perpetrator to gain access to confidential data.

The vulnerability of the shadowcopy2getshadowcopydata function in the Samba networking communication software package is related to the disclosure of information. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data remotely...

The vulnerability of Samba software allows a remote attacker to compromise the confidentiality of protected information.

The vulnerability exists in Samba under certain settings of shadow copying vfs. It stems from an improper initialization of the SRVSNAPSHOTARRAY field. Exploiting this vulnerability allows remote users who have passed authentication to access confidential information from the process’s memory,...

UBUNTU-CVE-2015-5299

The shadowcopy2getshadowcopydata function in modules/vfsshadowcopy2.c in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not verify that the DIRECTORYLIST access right has been granted, which allows remote attackers to access snapshots by visiting a shadow copy...