Lucene search

[email protected]NVD:CVE-2010-0926

HistoryMar 10, 2010 - 8:13 p.m.

CVE-2010-0926

2010-03-1020:13:04

CWE-22

[email protected]

web.nvd.nist.gov

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.031 Low

EPSS

Percentile

91.1%

JSON

The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by using the symlink command in smbclient to create a symlink containing … (dot dot) sequences, related to the combination of the unix extensions and wide links options.

Affected configurations

NVD

Node

sambasambaMatch3.3.0

sambasambaMatch3.3.1

sambasambaMatch3.3.2

sambasambaMatch3.3.3

sambasambaMatch3.3.4

sambasambaMatch3.3.5

sambasambaMatch3.3.6

sambasambaMatch3.3.7

sambasambaMatch3.3.8

sambasambaMatch3.3.9

sambasambaMatch3.3.10

sambasambaMatch3.4.0

sambasambaMatch3.4.1

sambasambaMatch3.4.2

sambasambaMatch3.4.3

sambasambaMatch3.4.4

sambasambaMatch3.4.5

sambasambaMatch3.5.0

References

archives.neohapsis.com/archives/fulldisclosure/2010-02/0083.html

archives.neohapsis.com/archives/fulldisclosure/2010-02/0107.html

archives.neohapsis.com/archives/fulldisclosure/2010-02/0108.html

blog.metasploit.com/2010/02/exploiting-samba-symlink-traversal.html

gitweb.samba.org/?p=samba.git%3Ba=commit%3Bh=bd269443e311d96ef495a9db47d1b95eb83bb8f4

lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

marc.info/?l=full-disclosure&m=126538598820903&w=2

marc.info/?l=oss-security&m=126539592603079&w=2

marc.info/?l=oss-security&m=126540402215620&w=2

marc.info/?l=oss-security&m=126540733320471&w=2

marc.info/?l=oss-security&m=126545363428745&w=2

marc.info/?l=oss-security&m=126777580624790&w=2

marc.info/?l=samba-technical&m=126539387432412&w=2

marc.info/?l=samba-technical&m=126540011609753&w=2

marc.info/?l=samba-technical&m=126540100511357&w=2

marc.info/?l=samba-technical&m=126540248613395&w=2

marc.info/?l=samba-technical&m=126540277713815&w=2

marc.info/?l=samba-technical&m=126540290614053&w=2

marc.info/?l=samba-technical&m=126540376915283&w=2

marc.info/?l=samba-technical&m=126540475116511&w=2

marc.info/?l=samba-technical&m=126540477016522&w=2

marc.info/?l=samba-technical&m=126540539117328&w=2

marc.info/?l=samba-technical&m=126540608318301&w=2

marc.info/?l=samba-technical&m=126540695819735&w=2

marc.info/?l=samba-technical&m=126547903723628&w=2

marc.info/?l=samba-technical&m=126548356728379&w=2

marc.info/?l=samba-technical&m=126549111204428&w=2

marc.info/?l=samba-technical&m=126555346721629&w=2

secunia.com/advisories/39317

www.openwall.com/lists/oss-security/2010/02/06/3

www.openwall.com/lists/oss-security/2010/03/05/3

www.samba.org/samba/news/symlink_attack.html

bugzilla.redhat.com/show_bug.cgi?id=562568

bugzilla.samba.org/show_bug.cgi?id=7104

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.031 Low

EPSS

Percentile

91.1%

JSON

Related for NVD:CVE-2010-0926

exploitpack1 veracode1 nessus12 openvas6 cve2 debiancve1 cvelist2 prion2 samba1 securityvulns1 redhat1 ubuntu1 ubuntucve1 exploitdb1 nvd1 seebug1 oraclelinux1