CVE-2010-0787

Name of the Vulnerable Software and Affected Versions mount-cifs versions 3.0.30 and earlier Samba versions 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 libsmbclient-64bit (affected versions not specified) libsmbclient0-64bit (affected versions not specified) libtalloc1-32bit (affected versions not specified) libtalloc1-64bit (affected versions not specified) libtdb1-64bit (affected versions not specified) libwbclient0-64bit (affected versions not specified) samba-client-64bit (affected versions not specified) samba-pdb (affected versions not specified) samba-python (affected versions not specified) samba-vscan (affected versions not specified) samba-winbind-64bit (affected versions not specified) cifs-mount (affected versions not specified) libsmbclient (affected versions not specified) libsmbclient-x86 (affected versions not specified) libsmbsharemodes (affected versions not specified) libmsrpc (affected versions not specified) libmsrpc-devel (affected versions not specified) samba-64bit (affected versions not specified)

Description The issue concerns multiple vulnerabilities in various packages of the Samba software and related components, which can lead to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited locally or remotely. The exploitation may allow attackers to gain privileges or disrupt the system. Technical details about the exploitation include the possibility of a symlink attack on the mountpoint directory file in the mount.cifs component.

Recommendations For mount-cifs version 3.0.30 and earlier, update to a version later than 3.0.30. For Samba versions 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5, update to a version later than 3.4.5. For libsmbclient-64bit, libsmbclient0-64bit, libtalloc1-32bit, libtalloc1-64bit, libtdb1-64bit, libwbclient0-64bit, samba-client-64bit, samba-pdb, samba-python, samba-vscan, samba-winbind-64bit, cifs-mount, libsmbclient, libsmbclient-x86, libsmbsharemodes, libmsrpc, libmsrpc-devel, and samba-64bit, update to the latest available version. As a temporary workaround, consider restricting access to the vulnerable components until a patch is available.