Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 SMB:SAMBA:ROOT-SYS

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 SMB

Keywords

 Samba Root File System Access Exploit

Release Date

 2009/01/13

Update Number

 1346

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

SMB: Samba Root File System Access Exploit


This signature detects attempts to exploit a known vulnerability against Samba. A successful attack can lead to arbitrary file access and possible code execution.

Extended Description

Samba is prone to an unauthorized-access vulnerability that occurs when registry shares are enabled. An attacker who has authenticated access to the affected application can exploit this issue to gain access to the root filesystem.

Affected Products

  • Mandriva linux_mandrake 2009.0
  • Mandriva linux_mandrake 2009.0 X86 64
  • Pardus linux_2008
  • Red_hat fedora 10
  • Red_hat fedora 9
  • Samba samba 3.0.0
  • Samba samba 3.0.0 Alpha
  • Samba samba 3.0.1
  • Samba samba 3.0.10
  • Samba samba 3.0.11
  • Samba samba 3.0.12
  • Samba samba 3.0.13
  • Samba samba 3.0.14
  • Samba samba 3.0.14A
  • Samba samba 3.0.2
  • Samba samba 3.0.20
  • Samba samba 3.0.20A
  • Samba samba 3.0.20B
  • Samba samba 3.0.21
  • Samba samba 3.0.21A
  • Samba samba 3.0.21B
  • Samba samba 3.0.21C
  • Samba samba 3.0.22
  • Samba samba 3.0.23A
  • Samba samba 3.0.23B
  • Samba samba 3.0.23C
  • Samba samba 3.0.23D
  • Samba samba 3.0.24
  • Samba samba 3.0.25
  • Samba samba 3.0.25A
  • Samba samba 3.0.25B
  • Samba samba 3.0.25C
  • Samba samba 3.0.25 Pre1
  • Samba samba 3.0.25 Pre2
  • Samba samba 3.0.25 Rc1
  • Samba samba 3.0.25 Rc2
  • Samba samba 3.0.25 Rc3
  • Samba samba 3.0.26
  • Samba samba 3.0.26A
  • Samba samba 3.0.27
  • Samba samba 3.0.27A
  • Samba samba 3.0.28
  • Samba samba 3.0.28A
  • Samba samba 3.0.29
  • Samba samba 3.0.2 A
  • Samba samba 3.0.3
  • Samba samba 3.0.30
  • Samba samba 3.0.32
  • Samba samba 3.0.33
  • Samba samba 3.0.4
  • Samba samba 3.0.4 -R1
  • Samba samba 3.0.5
  • Samba samba 3.0.6
  • Samba samba 3.0.7
  • Samba samba 3.0.8
  • Samba samba 3.0.9
  • Samba samba 3.2.0
  • Samba samba 3.2.1
  • Samba samba 3.2.2
  • Samba samba 3.2.3
  • Samba samba 3.2.4
  • Samba samba 3.2.5
  • Slackware linux 12.2
  • Slackware linux -Current
  • Suse opensuse 10.3
  • Suse opensuse 11.0
  • Suse opensuse 11.1
  • Ubuntu ubuntu_linux 8.10 Amd64
  • Ubuntu ubuntu_linux 8.10 I386
  • Ubuntu ubuntu_linux 8.10 Lpia
  • Ubuntu ubuntu_linux 8.10 Powerpc
  • Ubuntu ubuntu_linux 8.10 Sparc

References

  • BugTraq: 33118
  • CVE: CVE-2009-0022
  • URL: http://us1.samba.org/samba/security/CVE-2009-0022.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out