CVE Vulnerabilities

CVE-2001-1162

Published: Jun 23, 2001 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.

Affected Software

Name Vendor Start Version End Version
Samba Samba 2.0.6 2.0.6
Samba Samba 2.0.9 2.0.9
Samba Samba 2.0.7 2.0.7
Samba Samba 2.0.8 2.0.8
Samba Samba 2.0.5 2.0.5
Samba Samba 2.2.0 2.2.0

References