CVE-2004-0815
First published: Sat Oct 16 2004(Updated: )
The unix_clean_name function in Samba 2.2.x through 2.2.11, and 3.0.x before 3.0.2a, trims certain directory names down to absolute paths, which could allow remote attackers to bypass the specified share restrictions and read, write, or list arbitrary files via "/.////" style sequences in pathnames.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samba | =2.2.0 | |
| Samba | =2.2.0a | |
| Samba | =2.2.1a | |
| Samba | =2.2.2 | |
| Samba | =2.2.3 | |
| Samba | =2.2.3a | |
| Samba | =2.2.4 | |
| Samba | =2.2.5 | |
| Samba | =2.2.6 | |
| Samba | =2.2.7 | |
| Samba | =2.2.7a | |
| Samba | =2.2.8 | |
| Samba | =2.2.8a | |
| Samba | =2.2.9 | |
| Samba | =2.2.11 | |
| Samba | =2.2a | |
| Samba | =3.0.0 | |
| Samba | =3.0.1 | |
| Samba | =3.0.2 | |
| Samba | =3.0.2a |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.idefense.com/application/poi/display?id=146&type=vulnerabilities&flashstatus=true
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000873
- http://www.debian.org/security/2004/dsa-600
- http://www.securityfocus.com/bid/11281
- http://us4.samba.org/samba/news/#security_2.2.12
- https://bugzilla.fedora.us/show_bug.cgi?id=2102
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:104
- http://www.novell.com/linux/security/advisories/2004_35_samba.html
- http://www.trustix.org/errata/2004/0051/
- http://www.securityfocus.com/archive/1/377618
- http://www.redhat.com/support/errata/RHSA-2004-498.html
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101584-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57664-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-200529-1
- http://marc.info/?l=bugtraq&m=109655827913457&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17556
Frequently Asked Questions
What is the severity of CVE-2004-0815?
CVE-2004-0815 has a moderate severity rating due to potential unauthorized access to file systems.
How do I fix CVE-2004-0815?
To fix CVE-2004-0815, upgrade Samba to version 3.0.2a or later.
Which versions of Samba are affected by CVE-2004-0815?
Samba versions 2.2.x through 2.2.11 and 3.0.x before 3.0.2a are affected by CVE-2004-0815.
What type of attack does CVE-2004-0815 enable?
CVE-2004-0815 allows remote attackers to bypass share restrictions and access arbitrary files.
Can CVE-2004-0815 be exploited remotely?
Yes, CVE-2004-0815 can be exploited remotely through specially crafted directory names.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/samba
- canonical/samba
- version/samba/2.2.0
- version/samba/2.2.0a
- version/samba/2.2.1a
- version/samba/2.2.2
- version/samba/2.2.3
- version/samba/2.2.3a
- version/samba/2.2.4
- version/samba/2.2.5
- version/samba/2.2.6
- version/samba/2.2.7
- version/samba/2.2.7a
- version/samba/2.2.8
- version/samba/2.2.8a
- version/samba/2.2.9
- version/samba/2.2.11
- version/samba/2.2a
- version/samba/3.0.0
- version/samba/3.0.1
- version/samba/3.0.2
- version/samba/3.0.2a