Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for this attack to succeed.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Samba 竞争条件问题漏洞
Vulnerability Description
Samba是用于 Linux 和 Unix 的标准 Windows 互操作性程序套件。 Samba file server 存在竞争条件问题漏洞,该漏洞源于创建目录时的符号链接竞争条件而存在的。 远程认证用户可以使用 SMB1 或 NFS 符号链接竞争在共享定义之外的 Unix 文件系统上创建目录。 该漏洞允许远程用户绕过实施的安全限制。
CVSS Information
N/A
Vulnerability Type
N/A