Wind River Support Network

HomeDefectsLIN5-13652
Fixed

LIN5-13652 : Security Advisory - samba - CVE-2013-0214

Created: Feb 16, 2013    Updated: Dec 19, 2017
Resolved Date: Apr 22, 2014
Previous ID: LIN3-16201
Found In Version: 5.0
Fix Version: 5.0.1.14
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0214

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online