PT-2017-4073 · Samba Team+6 · Samba+5

Jann Horn

·

Publicado

2017-03-23

·

Atualizado

2024-06-15

·

CVE-2017-2619

CVSS v3.1

7.5

Alta

VetorAV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Samba versions prior to 4.6.1 Samba versions prior to 4.5.7 Samba versions prior to 4.4.11
Description The issue is related to a malicious client using a symlink race to access areas of the server file system not exported under the share definition. It is also associated with concurrent execution using a shared resource with incorrect synchronization, potentially allowing a remote attacker to access confidential data, compromise its integrity, and cause a denial of service.
Recommendations For versions prior to 4.6.1, update to version 4.6.1 or later. For versions prior to 4.5.7, update to version 4.5.7 or later. For versions prior to 4.4.11, update to version 4.4.11 or later.

Exploit

Correção

Race Condition

Link Following

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362CWE-59

Identificadores relacionados

ALT-PU-2017-1343
ALT-PU-2017-1344
ALT-PU-2018-2488
ALT-PU-2018-2489
BDU:2021-01421
CESA-2017_1265
CESA-2017_2789
CVE-2017-2619
DLA-894-1
DSA-3816-1
DSA-3816-2
ECHO-D748-4F34-4FD4
MGASA-2017-0145
OPENSUSE-SU-2017_0935-1
OPENSUSE-SU-2017_0944-1
OPENSUSE-SU-2024:11365-1
RHSA-2017:1265
RHSA-2017:2338
RHSA-2017:2778
RHSA-2017:2789
RHSA-2017_1265
RHSA-2017_2789
SUSE-RU-2017:1217-1
SUSE-RU-2017:1218-1
SUSE-RU-2017:1219-1
SUSE-SU-2017:0841-1
SUSE-SU-2017:0858-1
SUSE-SU-2017:0859-1
SUSE-SU-2017:0862-1
SUSE-SU-2017:1216-1
SUSE-SU-2017_0841-1
SUSE-SU-2017_0858-1
SUSE-SU-2017_0859-1
SUSE-SU-2017_0862-1
SUSE-SU-2017_1216-1
USN-3242-1
USN-3242-2
USN-3267-1

Produtos afetados

Alt Linux
Centos
Red Hat
Samba
Suse
Ubuntu