samba is vulnerable to privilege escalation. A flaw was found in the way Samba assigned group IDs under certain conditions. If the βwinbind nss infoβ parameter in smb.conf is set to either βsfuβ or βrfc2307β, Samba users are incorrectly assigned the group ID of 0.
docs.info.apple.com/article.html?artnum=307179
secunia.com/advisories/26764
secunia.com/advisories/26776
secunia.com/advisories/26795
secunia.com/advisories/26834
securityreason.com/securityalert/3135
slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.419439
www.redhat.com/security/updates/classification/#critical
www.redhat.com/support/errata/RHSA-2007-1016.html
www.redhat.com/support/errata/RHSA-2007-1017.html
www.samba.org/samba/security/CVE-2007-4138.html
www.securityfocus.com/archive/1/479078/100/0/threaded
www.securityfocus.com/bid/25636
www.securitytracker.com/id?1018681
www.us-cert.gov/cas/techalerts/TA07-352A.html
www.vupen.com/english/advisories/2007/3120
access.redhat.com/errata/RHSA-2007:1016
exchange.xforce.ibmcloud.com/vulnerabilities/36560
issues.rpath.com/browse/RPL-1705
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10375
www.redhat.com/archives/fedora-package-announce/2007-September/msg00201.html