Lucene search
RootSSV:19562HistoryMay 06, 2010 - 12:00 a.m.
Samba mount.cifs工具符号链接攻击本地权限提升漏洞
2010-05-0600:00:00
Root
www.seebug.org
19
EPSS
0
Percentile
5.1%
BUGTRAQ ID: 39898
CVE ID: CVE-2010-0747
Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。
Samba的mount.cifs工具中的client/mount.cifs.c文件存在安全漏洞,本地用户可以通过对加载点目录文件执行符号链接攻击导致在任意加载点上加载CIFS共享,获得权限提升。
Samba 3.4.7
厂商补丁:
Samba
目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
Related
openvas
openvas
Samba 'mount.cifs' Utility Symlink Attack Local Privilege Escalation Vulnerability
2010-05-04 00:00:00
Mandriva Update for samba MDVSA-2010:090 (samba)
2010-05-07 00:00:00
Mandriva Update for samba MDVSA-2010:090 (samba)
2010-05-07 00:00:00
cvelist
cvelist
CVE-2010-0747
2019-10-30 22:27:45
ubuntucve
ubuntucve
CVE-2010-0747
2019-10-30 00:00:00
prion
prion
Design/Logic Flaw
2019-10-30 23:15:00
nvd
nvd
CVE-2010-0747
2019-10-30 23:15:09
cve
cve
CVE-2010-0747
2019-10-30 23:15:09
redhatcve
redhatcve
CVE-2010-0747
2015-10-30 09:45:45