Samba < 2.0.10 Remote Arbitrary File Overwrite

critical Nessus Network Monitor Plugin ID 1338

Synopsis

The remote SAMBA server allows anonymous users to gain 'root' access.

Description

The remote Samba server is be vulnerable to a remote file creation vulnerability. This vulnerability allows an attacker overwrite arbitrary files by supplying an arbitrartily formed NetBIOS machine name to this server, and to potentially become root on this host.

Solution

Upgrade to Samba 2.0.10, 2.2.0a or higher

See Also

http://www.samba.org

Plugin Details

Severity: Critical

ID: 1338

Family: Samba

Published: 3/25/2013

Updated: 3/6/2019

Nessus ID: 10786

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:samba:samba

Reference Information

CVE: CVE-2001-1162

BID: 2928