May 25, 2001

Trustix: samba file permission vulnerability

Author: JT Smith

LinuxSecurity: "Samba up to version 2.0.7 uses mktemp(3) for creation of temporary
files. This allows malicious local users to alter contents of
other files on the system, and potentially gain superuser privileges.

This was originally thought fixed in Samba 2.0.8, but as it turns out,
that was not the case."


  • Linux
Click Here!