Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.800404
Categoría:Remote file access
Título:Samba Root File System Access Security Vulnerability
Resumen:The host has Samba installed and is prone to System Access Security; Vulnerability.
Descripción:Summary:
The host has Samba installed and is prone to System Access Security
Vulnerability.

Vulnerability Insight:
Access to the root file system is granted when authenticated users connect
to a share with an empty string as name.

Vulnerability Impact:
Successful local exploitation could result in bypassing certain
security restrictions by malicious users.

Affected Software/OS:
Samba 3.2.0 through 3.2.6 on Linux.

Solution:
Upgrade to version 3.2.7 or later.

CVSS Score:
6.3

CVSS Vector:
AV:N/AC:M/Au:S/C:C/I:N/A:N

Referencia Cruzada: BugTraq ID: 33118
Common Vulnerability Exposure (CVE) ID: CVE-2009-0022
http://www.securityfocus.com/bid/33118
https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00309.html
http://www.mandriva.com/security/advisories?name=MDVSA-2009:042
http://master.samba.org/samba/ftp/patches/security/samba-3.2.6-CVE-2009-0022.patch
http://osvdb.org/51152
http://www.securitytracker.com/id?1021513
http://secunia.com/advisories/33379
http://secunia.com/advisories/33392
http://secunia.com/advisories/33431
https://usn.ubuntu.com/702-1/
http://www.vupen.com/english/advisories/2009/0017
XForce ISS Database: samba-file-system-security-bypass(47733)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47733
CopyrightCopyright (C) 2009 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.