Lucene search

K

Veracode Vulnerability DatabaseVERACODE:23142

HistoryApr 10, 2020 - 12:17 a.m.

Privilege Escalation

2020-04-1000:17:28

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

15

EPSS

0

Percentile

12.7%

samba is vulnerable to privilege escalation. A flaw was found in the way Samba assigned group IDs under certain conditions. If the “winbind nss info” parameter in smb.conf is set to either “sfu” or “rfc2307”, Samba users are incorrectly assigned the group ID of 0.

References

docs.info.apple.com/article.html?artnum=307179

secunia.com/advisories/26764

secunia.com/advisories/26776

secunia.com/advisories/26795

secunia.com/advisories/26834

securityreason.com/securityalert/3135

slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.419439

www.redhat.com/security/updates/classification/#critical

www.redhat.com/support/errata/RHSA-2007-1016.html

www.redhat.com/support/errata/RHSA-2007-1017.html

www.samba.org/samba/security/CVE-2007-4138.html

www.securityfocus.com/archive/1/479078/100/0/threaded

www.securityfocus.com/bid/25636

www.securitytracker.com/id?1018681

www.us-cert.gov/cas/techalerts/TA07-352A.html

www.vupen.com/english/advisories/2007/3120

access.redhat.com/errata/RHSA-2007:1016

exchange.xforce.ibmcloud.com/vulnerabilities/36560

issues.rpath.com/browse/RPL-1705

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10375

www.redhat.com/archives/fedora-package-announce/2007-September/msg00201.html

EPSS

0

Percentile

12.7%

Related for VERACODE:23142

openvas20 samba1 cve1 nessus10 slackware1 ubuntucve1 seebug1 nvd1 altlinux1 securityvulns2 fedora1 cvelist1 freebsd1 prion1 debiancve1 redhat2 oraclelinux2 centos1 osv2