Lucene search

K
ubuntuUbuntuUSN-1226-1
HistoryOct 04, 2011 - 12:00 a.m.

Samba vulnerabilities

2011-10-0400:00:00
ubuntu.com
29

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

38.3%

Releases

  • Ubuntu 10.04
  • Ubuntu 8.04

Packages

  • samba - SMB/CIFS file, print, and login server for Unix

Details

Dan Rosenberg discovered that Samba incorrectly handled changes to the mtab
file. A local attacker could use this issue to corrupt the mtab file,
possibly leading to a denial of service. (CVE-2011-1678)

Jan Lieskovsky discovered that Samba incorrectly filtered certain strings
being added to the mtab file. A local attacker could use this issue to
corrupt the mtab file, possibly leading to a denial of service. This issue
only affected Ubuntu 10.04 LTS. (CVE-2011-2724)

Dan Rosenberg discovered that Samba incorrectly handled the mtab lock file.
A local attacker could use this issue to create a stale lock file, possibly
leading to a denial of service. (CVE-2011-3585)

OSVersionArchitecturePackageVersionFilename
Ubuntu8.04noarchsmbfs< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchlibpam-smbpass< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchlibsmbclient< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchlibsmbclient-dev< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchsamba< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchsamba-common< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchsamba-dbg< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchsmbclient< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchswat< 3.0.28a-1ubuntu4.16UNKNOWN
Ubuntu8.04noarchwinbind< 3.0.28a-1ubuntu4.16UNKNOWN
Rows per page:
1-10 of 221

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

38.3%