CVE Vulnerabilities

CVE-2004-0186

Published: Mar 15, 2004 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting a Samba share that contains a setuid root program, whose setuid attributes are not cleared when the share is mounted.

Affected Software

Name Vendor Start Version End Version
Samba Samba 2.0 (including) 2.0 (including)
Samba Samba 3.0.0 (including) 3.0.0 (including)

References