Computer Security
[EN] securityvulns.ru no-pyccku


Samba nss_info extension privilege escalation
Published:11.09.2007
Source:
SecurityVulns ID:8135
Type:local
Threat Level:
5/10
Description:Gid 0 is assigned to user, if "winbind nss info" configuration parameter has value "sfu" or "rfc2307".
Affected:SAMBA : Samba 3.0
CVE:CVE-2007-4138 (The Winbind nss_info extension (nsswitch/idmap_ad.c) in idmap_ad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the (1) RFC2307 or (2) Services for UNIX (SFU) primary group attribute is not defined.)
Original documentdocumentSAMBA, [SECURITY] Winbind's rfc2307 & SFU nss_info plugin in Samba 3.0.25[a-c] assigns users a primary gid of 0 by default (11.09.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod