Soluzioni per la vulnerabilità

La Scansione Vulnerabilità periodica di Nimsoft Cloud Monitor verifica le vulnerabilità riportate qui sotto. Per visualizzare le soluzioni per la vulnerabilità più recenti scansionate da WatchMouse, visitare la pagina sulla panoramica delle Soluzioni per la vulnerabilità

Categoria: Misc. Fattore di rischio: High Aggiunto il: 13 mar 2010
Synopsis:

The remote file server is vulnerable to a security bypass attack.

Description:

The remote Samba server is potentially affected by a security bypass vulnerability because of a flaw that causes all smbd processes, when libcap support is enabled, to inherit 'CAP_DAC_OVERRIDE' capabilities, which in turn causes all file system access to be allowed even when permissions should have been denied.

A remote, authenticated attacker may be able to exploit this flaw to gain access to sensitive information on Samba shares that are accessible to their user id.

See also:

http://us1.samba.org/samba/security/CVE-2010-0728.html
https://bugzilla.samba.org/show_bug.cgi?id=7222
http://www.samba.org/samba/security/

Solution:

Upgrade to Samba 3.3.12, 3.4.7, 3.5.1, or later.

Risk factor:

High / CVSS Base Score : 8.5
(CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C)