CVE-2007-0475 | Vulnerability Database | Aqua Security

Multiple stack-based buffer overflows in utilities/smb4k_*.cpp in Smb4K before 0.8.0 allow local users, when present on the Smb4K sudoers list, to gain privileges via unspecified vectors related to the args variable and unspecified other variables, in conjunction with the sudo configuration.

Affected Software

Name	Vendor	Start Version	End Version
Smb4k	Smb4k	0.4 (including)	0.4 (including)
Smb4k	Smb4k	0.5 (including)	0.5 (including)
Smb4k	Smb4k	0.6 (including)	0.6 (including)
Smb4k	Smb4k	0.7 (including)	0.7 (including)

References

http://developer.berlios.de/bugs/?func=detailbug\u0026bug_id=9631\u0026group_id=769
http://developer.berlios.de/project/shownotes.php?release_id=11706
http://developer.berlios.de/project/shownotes.php?release_id=11902
http://developer.berlios.de/project/shownotes.php?release_id=9777
http://lists.suse.com/archive/suse-security-announce/2007-Jan/0015.html
http://secunia.com/advisories/23937
http://secunia.com/advisories/23984
http://secunia.com/advisories/24111
http://secunia.com/advisories/24469
http://www.gentoo.org/security/en/glsa/glsa-200703-09.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:042
http://www.securityfocus.com/bid/22299
http://www.vupen.com/english/advisories/2007/0393
https://lists.berlios.de/pipermail/smb4k-announce/2006-December/000037.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0475
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html