Samba 'mount.cifs' Race Condition Lets Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1023547 |
|
SecurityTracker URL: http://securitytracker.com/id/1023547
|
|
CVE Reference:
CVE-2009-3297
(Links to External Site)
|
Date: Feb 5 2010
|
Impact:
Modification of system information, Root access via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 3.4.5 and prior versions
|
Description:
A vulnerability was reported in Samba. A local user can obtain elevated privileges on the target system.
A local user can exploit a race condition in the 'mount.cifs' utility to mount files over arbitrary locations, allowing the local user to gain root privileges.
Systems with 'mount.cifs' installed with set user id (setuid) permissions are affected.
Ronald Volgers reported this vulnerability.
|
Impact:
A local user can obtain root privileges on the target system.
|
Solution:
The vendor has issued a source code fix, available via git.
|
Vendor URL: www.samba.org/ (Links to External Site)
|
Cause:
Access control error, State error
|
Underlying OS:
Linux (Any), UNIX (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Fri, 05 Feb 2010 07:22:24 +0000
Subject: Samba
|
CVE-2009-3297
mount.cifs race condition
|
|
