CVE Vulnerabilities

CVE-2004-0815

Published: Nov 03, 2004 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The unix_clean_name function in Samba 2.2.x through 2.2.11, and 3.0.x before 3.0.2a, trims certain directory names down to absolute paths, which could allow remote attackers to bypass the specified share restrictions and read, write, or list arbitrary files via /.//// style sequences in pathnames.

Affected Software

Name Vendor Start Version End Version
Samba Samba 2.2.0 2.2.0
Samba Samba 2.2.0a 2.2.0a
Samba Samba 2.2.1a 2.2.1a
Samba Samba 2.2.2 2.2.2
Samba Samba 2.2.3 2.2.3
Samba Samba 2.2.3a 2.2.3a
Samba Samba 2.2.4 2.2.4
Samba Samba 2.2.5 2.2.5
Samba Samba 2.2.6 2.2.6
Samba Samba 2.2.7 2.2.7
Samba Samba 2.2.7a 2.2.7a
Samba Samba 2.2.8 2.2.8
Samba Samba 2.2.8a 2.2.8a
Samba Samba 2.2.9 2.2.9
Samba Samba 2.2.11 2.2.11
Samba Samba 2.2a 2.2a
Samba Samba 3.0.0 3.0.0
Samba Samba 3.0.1 3.0.1
Samba Samba 3.0.2 3.0.2
Samba Samba 3.0.2a 3.0.2a
Red Hat Enterprise Linux 2.1 RedHat samba *

References