CVE-2009-1888

Severity

57%

Complexity

86%

Confidentiality

81%

The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.

The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.

CVSS 2.0 Base Score 5.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:N).

Overview

First reported 15 years ago

2009-06-25 01:30:00

Last updated 6 years ago

2018-11-08 20:37:00

Affected Software

Samba Samba

Debian GNU/Linux 4.0

4.0

Debian GNU/Linux 5.0

5.0

Canonical Ubuntu Linux 6.06 LTS (Long-Term Support)

6.06

Canonical Ubuntu Linux 8.04 LTS (Long-Term Support)

8.04

Canonical Ubuntu Linux 8.10

8.10

Canonical Ubuntu Linux 9.04

9.04

References

35539

Third Party Advisory

35573

Third Party Advisory

35606

Third Party Advisory

36918

Third Party Advisory

http://wiki.rpath.com/Advisories:rPSA-2009-0145

Third Party Advisory

DSA-1823

Third Party Advisory

MDVSA-2009:196

Third Party Advisory

http://www.samba.org/samba/ftp/patches/security/samba-3.0.34-CVE-2009-1888.patch

Exploit, Patch, Vendor Advisory

http://www.samba.org/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1888.patch

Patch, Vendor Advisory

http://www.samba.org/samba/ftp/patches/security/samba-3.3.5-CVE-2009-1888.patch

Patch, Vendor Advisory

http://www.samba.org/samba/security/CVE-2009-1888.html

Patch, Vendor Advisory

20091112 rPSA-2009-0145-1 samba samba-client samba-server samba-swat

Third Party Advisory, VDB Entry

35472

Exploit, Third Party Advisory, VDB Entry

1022442

Third Party Advisory, VDB Entry

SSA:2009-177-01

Third Party Advisory

USN-839-1

Third Party Advisory

ADV-2009-1664

Permissions Required, Third Party Advisory

samba-acl-security-bypass(51327)

Third Party Advisory, VDB Entry

oval:org.mitre.oval:def:10790

Third Party Advisory

oval:org.mitre.oval:def:7292

Third Party Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.