Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0086

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2003-0086
Last Modified 07 Mar 2011 09:12:07
Published 31 Mar 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2003-0086

Summary

The code for writing reg files in Samba before 2.2.8 allows local users to overwrite arbitrary files via a race condition involving chown.

Vulnerable Systems

Application

  • Samba 2.0.0

  • Samba 2.0.1

  • Samba 2.0.10

  • Samba 2.0.2

  • Samba 2.0.3

  • Samba 2.0.4

  • Samba 2.0.5

  • Samba 2.0.6

  • Samba 2.0.7

  • Samba 2.0.8

  • Samba 2.0.9

  • Samba 2.2.0

  • Samba 2.2.0a

  • Samba 2.2.1a

  • Samba 2.2.2

  • Samba 2.2.3

  • Samba 2.2.3a

  • Samba 2.2.4

  • Samba 2.2.5

  • Samba 2.2.6

  • Samba 2.2.7

  • Samba 2.2.7a


References

BID - 7107

DEBIAN - DSA-262

BUGTRAQ - 20030317 GLSA: samba (200303-11)

BUGTRAQ - 20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL

REDHAT - RHSA-2003:095

SUSE - SuSE-SA:2003:016

SGI - 20030302-01-I

APPLE - APPLE-SA-2003-03-24

REDHAT - RHSA-2003:096

MANDRAKE - MDKSA-2003:032

GENTOO - GLSA-200303-11

SECUNIA - 8303

SECUNIA - 8299

BUGTRAQ - 20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)


Last Updated: 27 May 2016 10:37:46