smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
samba samba 3.4.6 |
||
samba samba 3.5.0 |
||
samba samba 3.3.11 |