CVE-2017-2619

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.

References

http://www.securityfocus.com/bid/97033

http://www.securitytracker.com/id/1038117

https://access.redhat.com/errata/RHSA-2017:1265

https://access.redhat.com/errata/RHSA-2017:2338

https://access.redhat.com/errata/RHSA-2017:2778

https://access.redhat.com/errata/RHSA-2017:2789

https://bugzilla.redhat.com/show_bug.cgi?id=1429472

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03755en_us

https://www.debian.org/security/2017/dsa-3816

https://www.exploit-db.com/exploits/41740/

https://www.samba.org/samba/security/CVE-2017-2619.html

Details

Source: MITRE

Published: 2018-03-12

Updated: 2019-10-09

Type: CWE-362

Risk Information

CVSS v2

Base Score: 6

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 6.8

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.6

Severity: HIGH

Tenable Plugins

View all (36 total)

IDNameProductFamilySeverity
127352NewStart CGSL MAIN 4.05 : samba Multiple Vulnerabilities (NS-SA-2019-0113)NessusNewStart CGSL Local Security Checks
high
121068Juniper Junos Space 18.4.x < 18.4R1 Multiple Vulnerabilities (JSA10917)NessusJunos Local Security Checks
high
119226Virtuozzo 6 : libsmbclient / libsmbclient-devel / samba / etc (VZLSA-2017-2789)NessusVirtuozzo Local Security Checks
high
110891Scientific Linux Security Update : samba on SL6.x i386/x86_64 (20180619)NessusScientific Linux Local Security Checks
high
103501Scientific Linux Security Update : samba on SL6.x i386/x86_64 (20170921)NessusScientific Linux Local Security Checks
high
103489Oracle Linux 6 : samba (ELSA-2017-2789)NessusOracle Linux Local Security Checks
high
103453RHEL 6 : Storage Server (RHSA-2017:2778)NessusRed Hat Local Security Checks
high
103406RHEL 6 : samba (RHSA-2017:2789)NessusRed Hat Local Security Checks
high
103385CentOS 6 : samba (CESA-2017:2789)NessusCentOS Local Security Checks
high
102156RHEL 7 : Red Hat Gluster Storage (RHSA-2017:2338)NessusRed Hat Local Security Checks
high
101752Fedora 26 : 2:samba (2017-fb9ed95cf3)NessusFedora Local Security Checks
high
101469Virtuozzo 7 : ctdb / ctdb-tests / libsmbclient / etc (VZLSA-2017-1265)NessusVirtuozzo Local Security Checks
high
100698EulerOS 2.0 SP2 : samba (EulerOS-SA-2017-1105)NessusHuawei Local Security Checks
critical
100697EulerOS 2.0 SP1 : samba (EulerOS-SA-2017-1104)NessusHuawei Local Security Checks
critical
100554Amazon Linux AMI : samba (ALAS-2017-834) (SambaCry)NessusAmazon Linux Local Security Checks
critical
100350Scientific Linux Security Update : samba on SL7.x x86_64 (20170522)NessusScientific Linux Local Security Checks
high
100346RHEL 7 : samba (RHSA-2017:1265)NessusRed Hat Local Security Checks
high
100344Oracle Linux 7 : samba (ELSA-2017-1265)NessusOracle Linux Local Security Checks
high
100329CentOS 7 : samba (CESA-2017:1265)NessusCentOS Local Security Checks
high
100050SUSE SLES11 Security Update : samba (SUSE-SU-2017:1216-1)NessusSuSE Local Security Checks
high
99685Ubuntu 17.04 : samba vulnerability (USN-3267-1)NessusUbuntu Local Security Checks
high
99414Fedora 24 : 2:samba (2017-97fb93e1d1)NessusFedora Local Security Checks
high
99291Debian DLA-894-1 : samba security updateNessusDebian Local Security Checks
high
99210openSUSE Security Update : samba (openSUSE-2017-439)NessusSuSE Local Security Checks
high
99209openSUSE Security Update : samba (openSUSE-2017-437)NessusSuSE Local Security Checks
high
99199Samba 4.4.x < 4.4.12 / 4.5.x < 4.5.7 / 4.6.x < 4.6.1 Path Renaming Symlink Local File DisclosureNessusMisc.
high
99147Fedora 25 : 2:samba (2017-c22a1dbe8b)NessusFedora Local Security Checks
high
99089SUSE SLES12 Security Update : samba (SUSE-SU-2017:0862-1)NessusSuSE Local Security Checks
high
99087SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2017:0859-1)NessusSuSE Local Security Checks
high
99086SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2017:0858-1)NessusSuSE Local Security Checks
high
99084SUSE SLES11 Security Update : samba (SUSE-SU-2017:0841-1)NessusSuSE Local Security Checks
high
97972FreeBSD : samba -- symlink race allows access outside share definition (2826317b-10ec-11e7-944e-000c292e4fd8)NessusFreeBSD Local Security Checks
high
97937Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS / 16.10 : samba vulnerability (USN-3242-1)NessusUbuntu Local Security Checks
high
97923Debian DSA-3816-1 : samba - security updateNessusDebian Local Security Checks
high
97919Slackware 14.0 / 14.1 / 14.2 / current : samba (SSA:2017-082-02)NessusSlackware Local Security Checks
high
700022Samba 4.4.x < 4.4.12 / 4.5.x < 4.5.7 / 4.6.x < 4.6.1 Local File DisclosureNessus Network MonitorSamba
low