June 27, 2001

Caldera: Samba security advisory

Author: JT Smith

Posted at LWN.net: "There is a file overwrite vulnerability in the log facilities
of the Samba filesharing package which can be used by a remote
attacker to overwrite system files and to gain root access.
This requires a specific logging entry to be set.

Caldera OpenLinux is not vulnerable to this problem in its default
configuration, because it does not include a default configuration
file for Samba and the sample configuration we ship has logging
commented out."


  • Linux
Click Here!