PT-2010-2649 · Samba+1 · Samba+1

Jeremy Allison

Published

2010-03-09

Updated

2024-06-15

CVE-2010-0926

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Samba versions prior to 3.3.11 Samba versions 3.4.x prior to 3.4.6 Samba versions 3.5.x prior to 3.5.0rc3

Description The default configuration of smbd in Samba allows remote authenticated users to access arbitrary files by leveraging a directory traversal issue. This is achieved by using the symlink command in smbclient to create a symlink containing .. (dot dot) sequences, related to the combination of the unix extensions and wide links options.

Recommendations For Samba versions prior to 3.3.11, update to version 3.3.11 or later. For Samba versions 3.4.x prior to 3.4.6, update to version 3.4.6 or later. For Samba versions 3.5.x prior to 3.5.0rc3, update to version 3.5.0rc3 or later.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2010-0926

ECHO-BC72-4FE3-F30F

OPENSUSE-SU-2024:10069-1

RHSA-2012:0313

RHSA-2012_0313

Affected Products

Red Hat

Samba

PT-2010-2649 · Samba+1 · Samba+1

CVE-2010-0926

Weakness Enumeration

Related Identifiers

Affected Products

References · 99