FreeBSD : samba -- ACLs are not checked on opening an alternate data stream on a file or directory (a4f08579-516c-11e3-9b62-000c292e4fd8)

This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

The Samba project reports :

Samba versions 3.2.0 and above (all versions of 3.2.x, 3.3.x, 3.4.x,
3.5.x, 3.6.x, 4.0.x and 4.1.x) do not check the underlying file or
directory ACL when opening an alternate data stream.

According to the SMB1 and SMB2+ protocols the ACL on an underlying
file or directory should control what access is allowed to alternate
data streams that are associated with the file or directory.

See also :

http://www.samba.org/samba/security/CVE-2013-4475
http://www.nessus.org/u?86a26a34

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 70966 ()

Bugtraq ID:

CVE ID: CVE-2013-4475

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now