CVE-2009-0022

Опубликовано: 05 янв. 2009

Источник: nvd

CVSS2: 6.3

EPSS Низкий

Описание

Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:samba:samba:3.2.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.6:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04433

Низкий

6.3 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2009-0022

ubuntu

почти 17 лет назад

Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.

CVE-2009-0022

redhat

почти 17 лет назад

Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.

CVE-2009-0022

debian

почти 17 лет назад

Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows re ...

GHSA-9j75-qv5f-pwv3

github

больше 3 лет назад

Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.

EPSS

Процентиль: 89%

0.04433

Низкий

6.3 Medium

CVSS2

Дефекты

CWE-20