CVE-2010-0787 — Link Following in Samba

CWE-59 — Link Following10 documents7 sources

Severity

4.4MEDIUMNVD

EPSS

0.5%

top 33.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba

Timeline

PublishedMar 2

Latest updateMay 2

Description

client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file.

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/samba< samba 2:3.4.5~dfsg-2 (bookworm)

▶Debiansamba/samba< 2:3.4.5~dfsg-2+3

▶NVDsamba/samba5 versions+4

Patches

Patch: www.securityfocus.com ↗Patch: bugzilla.samba.org ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-55gw-qcg5-xjrx: client/mount↗2022-05-02

▶

OSV

CVE-2010-0787: client/mount↗2010-03-02

▶

📋Vendor Advisories

Ubuntu

Samba vulnerability↗2010-01-28

▶

Red Hat

samba: Race condition by mount (mount.cifs) operations↗2010-01-26

▶

Debian

CVE-2010-0787: samba - client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3....↗2010

▶

💬Community

Bugzilla

CVE-2010-0789 fuse: Race condition by umount (fusermount) operations↗2010-03-26

▶

Bugzilla

CVE-2010-0787 samba: Race condition by mount (mount.cifs) operations↗2010-03-26

▶

Bugzilla

CVE-2010-0547 samba: mount.cifs improper device name and mountpoint strings sanitization↗2010-02-05

▶

Bugzilla

CVE-2010-0788 ncpfs: Race condition by mount (ncpmount) / umount (ncpumount) operations↗2009-11-04

▶