Wind River Support Network

HomeDefectsLIN8-2499
Fixed

LIN8-2499 : Security Advisory - samba - CVE-2015-5252

Created: Jan 13, 2016    Updated: Dec 3, 2018
Resolved Date: Feb 4, 2016
Found In Version: 8.0
Fix Version: 8.0.0.2
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

vfs.c in smbd in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, when share names with certain substring relationships exist, allows remote attackers to bypass intended file-access restrictions via a symlink that points outside of a share.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5252

Other Downloads


CVEs


Live chat
Online