SuSE 10 Security Update : Samba (ZYPP Patch Number 6920)

Low Nessus Plugin ID 45471


The remote SuSE 10 host is missing a security-related patch.


With enabled 'wide links' samba follows symbolic links on the server side, therefore allowing clients to overwrite arbitrary files (CVE-2010-0926). This update changes the default setting to have 'wide links' disabled by default. The new default only works if 'wide links' is not set explicitly in smb.conf.

Due to a race condition in mount.cifs a local attacker could corrupt /etc/mtab if mount.cifs is installed setuid root. mount.cifs is not setuid root by default and it's not recommended to change that.


Apply ZYPP patch number 6920.

See Also

Plugin Details

Severity: Low

ID: 45471

File Name: suse_cifs-mount-6920.nasl

Version: $Revision: 1.8 $

Type: local

Agent: unix

Published: 2010/04/09

Modified: 2016/12/22

Dependencies: 12634

Risk Information

Risk Factor: Low


Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2010/03/11

Reference Information

CVE: CVE-2010-0547, CVE-2010-0926

CWE: 20, 22