Wind River Support Network

HomeDefectsLIN6-5401
Fixed

LIN6-5401 : Security Advisory - samba - CVE-2013-0214

Created: Feb 16, 2013    Updated: Dec 3, 2018
Resolved Date: Apr 22, 2014
Previous ID: LIN3-16189
Found In Version: 6.0
Fix Version: 6.0.0.6
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0214

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online