|
Family: Remote file access --> Category: infos
Samba Remote Arbitrary File Access Vulnerability Scan
Vulnerability Scan Summary checks samba version
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote file server allows access to arbitrary files.
Description :
According to its version number, the remote Samba server is affected
by a flaw that allows a possible hacker to access arbitrary files which
exist outside of the shares's defined path. A possible hacker needs a valid
account to exploit this flaw.
See also :
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=146
http://archives.neohapsis.com/archives/bugtraq/2004-09/0443.html
http://archives.neohapsis.com/archives/bugtraq/2004-10/0038.html
Solution :
Upgrade to Samba 2.2.12 / 3.0.7 or later.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:L/Au:R/C:C/I:N/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|