CVE-2010-0728

Published: Mar 9, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[samba-announce] 20100308 Security problem with Samba on Linux - affects 3.5.0, 3.4.6 and 3.3.11

mailing-list

x_refsource_MLIST

http://www.samba.org/samba/security/CVE-2010-0728

x_refsource_CONFIRM

http://www.samba.org/samba/history/samba-3.4.7.html

x_refsource_CONFIRM

https://bugzilla.samba.org/show_bug.cgi?id=7222

x_refsource_CONFIRM

http://www.samba.org/samba/history/samba-3.3.12.html

x_refsource_CONFIRM

http://www.samba.org/samba/history/samba-3.5.1.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2010-0728

Description

Affected Products

References