CVE-2000-0936

Sažetak

Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html
http://www.securityfocus.com/bid/1874
https://exchange.xforce.ibmcloud.com/vulnerabilities/5445

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

10-10-2017 - 01:29

Objavljeno

19-12-2000 - 05:00