Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-2948HistoryOct 07, 2009 - 6:30 p.m.
CVE-2009-2948
2009-10-0718:30:00
Debian Security Bug Tracker
security-tracker.debian.org
20
CVSS2
1.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.001
Percentile
39.1%
mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2, when mount.cifs is installed suid root, does not properly enforce permissions, which allows local users to read part of the credentials file and obtain the password by specifying the path to the credentials file and using the --verbose or -v option.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 11 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 999 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
| Debian | 13 | all | samba | < 2:3.4.2-1 | samba_2:3.4.2-1_all.deb |
Related
veracode
veracode
Information Disclosure
2020-04-10 00:39:58
samba
samba
Information disclosure by setuid mount.cifs
2009-10-01 00:00:00
nvd
nvd
CVE-2009-2948
2009-10-07 18:30:00
ubuntucve
ubuntucve
CVE-2009-2948
2009-10-07 00:00:00
seebug
seebug
Samba setuid mount.cifs信息泄露漏洞
2009-10-12 00:00:00
prion
prion
Path traversal
2009-10-07 18:30:00
cvelist
cvelist
CVE-2009-2948
2009-10-07 18:00:00
cve
cve
CVE-2009-2948
2009-10-07 18:30:00
nessus
nessus
SuSE 11 Security Update : Samba (SAT Patch Number 1352)
2011-01-21 00:00:00
openSUSE 10 Security Update : cifs-mount (cifs-mount-6519)
2009-10-30 00:00:00
Fedora 10 : samba-3.2.15-0.36.fc10 (2009-10172)
2009-10-05 00:00:00
openvas
openvas
Slackware Advisory SSA:2009-276-01 samba
2012-09-11 00:00:00
Debian Security Advisory DSA 1908-1 (samba)
2009-10-19 00:00:00
Debian: Security Advisory (DSA-1908-1)
2009-10-19 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: samba-3.4.2-0.42.fc11
2009-10-03 18:59:38
[SECURITY] Fedora 11 Update: samba-3.4.5-0.47.fc11
2010-01-29 03:24:41
[SECURITY] Fedora 11 Update: samba-3.4.7-0.50.fc11
2010-03-10 06:46:46
altlinux
altlinux
Security fix for the ALT Linux 5 package samba version 3.0.37-alt1
2009-10-01 00:00:00
Security fix for the ALT Linux 6 package samba version 3.0.37-alt1
2009-10-01 00:00:00
slackware
slackware
samba
2009-10-04 00:01:26
debian
debian
[SECURITY] [DSA 1908-1] New samba packages fix several vulnerabilities
2009-10-14 02:05:13
securityvulns
securityvulns
Samba multiple security vulnerabilities
2009-10-14 00:00:00
[SECURITY] [DSA 1908-1] New samba packages fix several vulnerabilities
2009-10-14 00:00:00
osv
osv
samba - several vulnerabilities
2009-10-14 00:00:00
cifs-utils-6.5-1.5 on GA media
2024-06-15 00:00:00
ctdb-4.5.0-1.1 on GA media
2024-06-15 00:00:00
redhat
redhat
(RHSA-2009:1529) Moderate: samba security update
2009-10-27 00:00:00
(RHSA-2009:1585) Moderate: samba3x security and bug fix update
2009-11-16 00:00:00
oraclelinux
oraclelinux
samba security update
2009-10-27 00:00:00
centos
centos
samba security update
2009-10-27 19:23:21
vmware
vmware
ESX Service Console updates for samba and acpid
2010-04-01 00:00:00
ESX Service Console updates for samba and acpid
2010-04-01 00:00:00
ubuntu
ubuntu
Samba vulnerabilities
2009-10-01 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2012-06-24 00:00:00
CVSS2
1.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.001
Percentile
39.1%
Related for DEBIANCVE:CVE-2009-2948