CVE-2009-1888

NONECVSS 0.0

0.0

The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.

🔗 References (40)

secalert@redhathttp://secunia.com/advisories/35539
secalert@redhathttp://secunia.com/advisories/35573
secalert@redhathttp://secunia.com/advisories/35606
secalert@redhathttp://secunia.com/advisories/36918
secalert@redhathttp://wiki.rpath.com/Advisories:rPSA-2009-0145
secalert@redhathttp://www.debian.org/security/2009/dsa-1823
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2009:196
secalert@redhathttp://www.samba.org/samba/ftp/patches/security/samba-3.0.34-CVE-2009-1888.patch
secalert@redhathttp://www.samba.org/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1888.patch
secalert@redhathttp://www.samba.org/samba/ftp/patches/security/samba-3.3.5-CVE-2009-1888.patch
secalert@redhathttp://www.samba.org/samba/security/CVE-2009-1888.html
secalert@redhathttp://www.securityfocus.com/archive/1/507856/100/0/threaded
secalert@redhathttp://www.securityfocus.com/bid/35472
secalert@redhathttp://www.securitytracker.com/id?1022442
secalert@redhathttp://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.521591

Is Your Infrastructure Affected by CVE-2009-1888?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1888

📅 Published

🔄 Last Modified

🔗 References (40)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1888?