Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1288

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-1288
Last Modified 05 Sep 2008 04:19:10
Published 19 Nov 1998 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1288

Summary

Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.

Vulnerable Systems

Operating System

  • Caldera Openlinux 1.0

  • Caldera Openlinux 1.1

  • Caldera Openlinux 1.2

  • Caldera Openlinux 1.3

  • Redhat Linux

  • Turbolinux

Application

  • Samba 1.9.18


References

XF - samba-wsmbconf(1406)

CALDERA - SA-1998.35

BUGTRAQ - 19981119 Vulnerability in Samba on RedHat, Caldera and PHT TurboLinux


Last Updated: 27 May 2016 10:35:22