OVAL Reference oval:org.mitre.oval:def:7257

Oval Definition:

oval:org.mitre.oval:def:7257

Revision Date:	2015-04-20	Version:	27
Title:	HP-UX running HP CIFS Server (Samba), Remote Unauthorized Access
Description:	Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, as used in the SMB subsystem in Apple Mac OS X 10.5.8 when Windows File Sharing is enabled, Fedora 11, and other operating systems, does not properly handle errors in resolving pathnames, which allows remote authenticated users to bypass intended sharing restrictions, and read, create, or modify files, in certain circumstances involving user accounts that lack home directories.
Family:	unix	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2009-2813
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis
Criteria meets HP Security Bulletin HPSBUX02479 SSRT090212 rev.1 platforms HP-UX B.11.31 OR HP-UX B.11.11 OR HP-UX B.11.23 AND filesets tests CIFS-Server.CIFS-ADMIN version is less than A.02.04.01 OR CIFS-Server.CIFS-DOC version is less than A.02.04.01 OR CIFS-Server.CIFS-LIB version is less than A.02.04.01 OR CIFS-Server.CIFS-MAN version is less than A.02.04.01 OR CIFS-Server.CIFS-RUN version is less than A.02.04.01 OR CIFS-Server.CIFS-UTIL version is less than A.02.04.01 OR Criteria meets HP Security Bulletin HPSBUX02479 SSRT090212 rev.1 HP-UX B.11.31 AND filesets tests CIFS-Server.CIFS-ADMIN version is less than A.02.03.05 OR CIFS-Server.CIFS-DOC version is less than A.02.03.05 OR CIFS-Server.CIFS-LIB version is less than A.02.03.05 OR CIFS-Server.CIFS-RUN version is less than A.02.03.05 OR CIFS-Server.CIFS-UTIL version is less than A.02.03.05 OR CIFS-CFSM.CFSM-KRN version is less than A.02.03.05 OR CIFS-CFSM.CFSM-RUN version is less than A.02.03.05 OR Criteria meets HP Security Bulletin HPSBUX02479 SSRT090212 rev.1 platforms HP-UX B.11.23 OR HP-UX B.11.11 AND filesets tests CIFS-Server.CIFS-ADMIN version is less than A.02.03.05 OR CIFS-Server.CIFS-DOC version is less than A.02.03.05 OR CIFS-Server.CIFS-LIB version is less than A.02.03.05 OR CIFS-Server.CIFS-RUN version is less than A.02.03.05 OR CIFS-Server.CIFS-UTIL version is less than A.02.03.05

BACK