Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0935

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2000-0935
Last Modified 05 Sep 2008 04:22:14
Published 19 Dec 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0935

Summary

Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file.

Vulnerable Systems

Application

  • Samba 2.0.7


References

BID - 1872

BUGTRAQ - 20001030 Samba 2.0.7 SWAT vulnerabilities

XF - samba-swat-logging-sym-link


Last Updated: 27 May 2016 10:35:56