RootSSV:19045Samba 'mount.cifs'本地特权提升漏洞
Bugraq ID: 37992
CVE ID:CVE-2009-3297
mount.cifs是Samba应用程序包含的工具。mount.cifs程序允许用户通过不同的方式传送凭据文件的名称或包含有口令的文件。
mount.cifs存在竞争条件问题,本地攻击者可以利用漏洞提升特权。
建立一个路径不包含符号链接的tmp目录,使用mount.cifs开始加载攻击者所控制的共享,但当密码对话框提示时把它转到到后台,使用符号链接把 temp目录链接到/etc/pam.d,然后再把mount.cifs切换到前台,输入密码,按回车,此时攻击者的共享加载在/etc/pam.d中,导致特权提升。
Samba Samba 3.4.5
Samba Samba 3.4.2
Samba Samba 3.4.1
Samba Samba 3.3.8
Samba Samba 3.3.7
Samba Samba 3.3.6
Samba Samba 3.3.5
Samba Samba 3.2.15
Samba Samba 3.2.14
Samba Samba 3.2.13
Samba Samba 3.2.12
Samba Samba 3.2.5
Samba Samba 3.2.4
Samba Samba 3.2.3
Samba Samba 3.2.2
Samba Samba 3.2.1
Samba Samba 3.2
Samba Samba 3.0.37
Samba Samba 3.0.36
Samba Samba 3.0.35
Samba Samba 3.0.34
Samba Samba 3.0.33
Samba Samba 3.0.32
Samba Samba 3.0.30
Samba Samba 3.0.29
Samba Samba 3.0.29
Samba Samba 3.0.28 a
Samba Samba 3.0.28
Samba Samba 3.0.27
Samba Samba 3.0.26
Samba Samba 3.0.25 rc3
Samba Samba 3.0.25 rc2
Samba Samba 3.0.25 rc1
Samba Samba 3.0.25 pre2
Samba Samba 3.0.25 pre1
Samba Samba 3.0.25 c
Samba Samba 3.0.25 b
Samba Samba 3.0.25 a
Samba Samba 3.0.25
Samba Samba 3.0.24
Samba Samba 3.0.22
Samba Samba 3.0.21
Samba Samba 3.0.20
Samba Samba 3.0.14
Samba Samba 3.0.13
Samba Samba 3.0.12
Samba Samba 3.0.11
Samba Samba 3.0.10
Samba Samba 3.0.9
Samba Samba 3.0.8
Samba Samba 3.0.7
Samba Samba 3.0.6
Samba Samba 3.0.5
Samba Samba 3.0.4 -r1
Samba Samba 3.0.4
Samba Samba 3.0.3
Samba Samba 3.0.2 a
Samba Samba 3.0.2
Samba Samba 3.0.1
Samba Samba 3.0 alpha
Samba Samba 3.0
Samba Samba 3.0.27a
Samba Samba 3.0.27
Samba Samba 3.0.26a
Samba Samba 3.0.23d
Samba Samba 3.0.23c
Samba Samba 3.0.23b
Samba Samba 3.0.23a
Samba Samba 3.0.21c
Samba Samba 3.0.21b
Samba Samba 3.0.21a
Samba Samba 3.0.20b
Samba Samba 3.0.20a
Samba Samba 3.0.14a
用户可联系供应商获得最新程序:
http://www.samba.org/
Related
