Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Samba 权限许可和访问控制问题漏洞
Vulnerability Description
Samba是用于 Linux 和 Unix 的标准 Windows 互操作性程序套件。 Samba 存在权限许可和访问控制问题漏洞。当用户试图修改ACL但被拒绝,如果smb.conf中dos filemode参数设置为yes且用户已经拥有文件的写访问,就可能覆盖这个拒绝操作。错误的起因是在检查用户的写访问时读取了未初始化的内存而不是文件stat结构中的值 。
CVSS Information
N/A
Vulnerability Type
N/A