Soluções para vulnerabilidades

O Exame Periódico de Vulnerabilidade do Nimsoft Cloud Monitor verifica a vulnerabilidade abaixo. Para ver as soluções para vulneralidades adicionadas mais recentemente que são examinadas pelo WatchMouse, acesse a visão geral das Soluções para vulnerabilidades

Samba 'CAP_DAC_OVERRIDE' File Permission Security Bypass
Categoria: Misc.	Fator de risco: High	Adicionado: 13 Mar 2010
Synopsis: The remote file server is vulnerable to a security bypass attack. Description: The remote Samba server has a flaw that causes all smbd processes, when libcap support is enabled, to inherit 'CAP_DAC_OVERRIDE' capabilities, which in turn causes all file system access to be allowed even when permissions should have been denied. A remote, authenticated attacker can exploit this flaw to gain access to sensitive information on Samba shares that are accessible to their user id. See also: http://us1.samba.org/samba/security/CVE-2010-0728.html https://bugzilla.samba.org/show_bug.cgi?id=7222 http://www.samba.org/samba/security/ Solution: Upgrade to Samba 3.3.12, 3.4.7, 3.5.1, or later. Risk factor: High / CVSS Base Score : 8.5 (CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C)


	exames adicionados nos últimos 7 dias