Lucene search

K

RedhatCVELIST:CVE-2009-1888

HistoryJun 24, 2009 - 10:00 p.m.

CVE-2009-1888

2009-06-2422:00:00

redhat

www.cve.org

3

6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

62.1%

The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.

References

secunia.com/advisories/35539

secunia.com/advisories/35573

secunia.com/advisories/35606

secunia.com/advisories/36918

wiki.rpath.com/Advisories:rPSA-2009-0145

www.debian.org/security/2009/dsa-1823

www.mandriva.com/security/advisories?name=MDVSA-2009:196

www.samba.org/samba/ftp/patches/security/samba-3.0.34-CVE-2009-1888.patch

www.samba.org/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1888.patch

www.samba.org/samba/ftp/patches/security/samba-3.3.5-CVE-2009-1888.patch

www.samba.org/samba/security/CVE-2009-1888.html

www.securityfocus.com/archive/1/507856/100/0/threaded

www.securityfocus.com/bid/35472

www.securitytracker.com/id?1022442

www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.521591

www.ubuntu.com/usn/USN-839-1

www.vupen.com/english/advisories/2009/1664

exchange.xforce.ibmcloud.com/vulnerabilities/51327

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10790

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7292

6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

62.1%

Related for CVELIST:CVE-2009-1888

debiancve1 samba1 cve1 ubuntucve1 veracode1 prion1 openvas29 nvd1 seebug1 osv1 slackware1 nessus43 securityvulns2 debian1 redhat2 centos1 oraclelinux1 vmware2 ubuntu1 suse1