smb4k 0.4 and other versions prior to 0.6.3 allows local users to read sensitive files via a symlink attack on the (1) smb4k.tmp or (2) sudoers temporary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
smb4k smb4k 0.4 |
||
smb4k smb4k 0.5 |
||
smb4k smb4k 0.6 |