Oval Definition:	oval:org.mitre.oval:def:22808
Revision Date: 2014-05-26 Version: 28 Title: ELSA-2009:1529: samba security update (Moderate) Description: mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2, when mount.cifs is installed suid root, does not properly enforce permissions, which allows local users to read part of the credentials file and obtain the password by specifying the path to the credentials file and using the --verbose or -v option. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 ELSA-2009:1529-01 Platform(s): Oracle Linux 5 Product(s): samba Definition Synopsis Oracle Linux 5.x AND rpm test samba-client is earlier than 0:3.0.33-3.15.el5_4 OR samba-common is earlier than 0:3.0.33-3.15.el5_4 OR samba is earlier than 0:3.0.33-3.15.el5_4 OR samba-swat is earlier than 0:3.0.33-3.15.el5_4
BACK