SuSE9 Security Update : Samba (YOU Patch Number 12595)

Low Nessus Plugin ID 45453


The remote SuSE 9 host is missing a security-related patch.


With enabled 'wide links' samba follows symbolic links on the server side, therefore allowing clients to overwrite arbitrary files (CVE-2010-0926). This update changes the default setting to have 'wide links' disabled by default. The new default only works if 'wide links' is not set explicitly in smb.conf.

Due to a race condition in mount.cifs a local attacker could corrupt /etc/mtab if mount.cifs is installed setuid root. mount.cifs is not setuid root by default and it's not recommended to change that.


Apply YOU patch number 12595.

See Also

Plugin Details

Severity: Low

ID: 45453

File Name: suse9_12595.nasl

Version: $Revision: 1.5 $

Type: local

Agent: unix

Published: 2010/04/09

Modified: 2016/12/21

Dependencies: 12634

Risk Information

Risk Factor: Low


Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2010/03/12

Reference Information

CVE: CVE-2010-0547, CVE-2010-0926

CWE: 20, 22