CVE-2017-2619

Опубликовано: 23 мар. 2017

Источник: redhat

CVSS3: 5.9

EPSS Средний

Описание

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

A race condition was found in samba server. A malicious samba client could use this flaw to access files and directories in areas of the server file system not exported under the share definitions.

Меры по смягчению последствий

Add the parameter: unix extensions = no to the [global] section of your smb.conf and restart smbd. This prevents SMB1 clients from creating symlinks on the exported file system using SMB1. However, if the same region of the file system is also exported using NFS, NFS clients can create symlinks that potentially can also hit the race condition. For non-patched versions of Samba we recommend only exporting areas of the file system by either SMB or NFS, not both.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	samba	Will not fix
Red Hat Enterprise Linux 5	samba3x	Will not fix
Red Hat Enterprise Linux 6	samba4	Affected
Red Hat Enterprise Linux 6	samba	Fixed	RHSA-2017:2789	21.09.2017
Red Hat Enterprise Linux 7	samba	Fixed	RHSA-2017:1265	22.05.2017
Red Hat Gluster Storage 3.2 for RHEL 7	samba	Fixed	RHSA-2017:2338	01.08.2017
Red Hat Gluster Storage 3.3 for RHEL 6	libldb	Fixed	RHSA-2017:2778	21.09.2017
Red Hat Gluster Storage 3.3 for RHEL 6	libtalloc	Fixed	RHSA-2017:2778	21.09.2017
Red Hat Gluster Storage 3.3 for RHEL 6	libtdb	Fixed	RHSA-2017:2778	21.09.2017
Red Hat Gluster Storage 3.3 for RHEL 6	libtevent	Fixed	RHSA-2017:2778	21.09.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-362

https://bugzilla.redhat.com/show_bug.cgi?id=1429472samba: symlink race permits opening files outside share directory

EPSS

Процентиль: 95%

0.2026

Средний

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2017-2619

CVSS3: 7.5

ubuntu

больше 7 лет назад

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

CVE-2017-2619

CVSS3: 7.5

nvd

больше 7 лет назад

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

CVE-2017-2619

CVSS3: 7.5

debian

больше 7 лет назад

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a mali ...

openSUSE-SU-2017:0944-1

suse-cvrf

около 8 лет назад

Security update for samba

openSUSE-SU-2017:0935-1

suse-cvrf

около 8 лет назад

Security update for samba

EPSS

Процентиль: 95%

0.2026

Средний

5.9 Medium

CVSS3