Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

USN-702-1: Samba vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) USN-702-1: Samba vulnerability
# 1  
Old 01-05-2009
USN-702-1: Samba vulnerability
Referenced CVEs:
CVE-2009-0022


Description:
===========================================================Ubuntu Security Notice USN-702-1 January 05, 2009samba vulnerabilityCVE-2009-0022===========================================================A security issue affects the following Ubuntu releases:Ubuntu 8.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 8.10: samba 2:3.2.3-1ubuntu3.4In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:Gunter Höckel discovered that Samba with registry shares enabled did notproperly validate share names. An authenticated user could gain access to theroot filesystem by using an older version of smbclient and specifying anempty string as a share name. This is only an issue if registry shares areenabled on the server by setting "registry shares = yes", "include = registry",or "config backend = registry", which is not the default.





More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

regpatch

REGPATCH(1)							  [FIXME: manual]						       REGPATCH(1)

NAME

       regpatch - Applies registry patches to registry files

SYNOPSIS

       regpatch [--help] [--backend=BACKEND] [--credentials=CREDENTIALS] [location] [patch-file]

DESCRIPTION

       The regpatch utility applies registry patches to Windows registry files. The patch files should have the same format as is being used by
       the regdiff utility and regedit32.exe from Windows.

       If no patch file is specified on the command line, regpatch attempts to read it from standard input.

OPTIONS

       --help
	   Show list of available options.

       --backend BACKEND
	   Name of backend to load. Possible values are: creg, regf, dir and rpc. The default is dir.

       --credentials=CREDENTIALS
	   Credentials to use, if any. Password should be separated from user name by a percent sign.

VERSION

       This man page is correct for version 4.0 of the Samba suite.

SEE ALSO

       regdiff, regtree, regshell, gregedit, samba, diff, patch

AUTHOR

       This utility is part of the Samba[1] suite, which is developed by the global Samba Team[2].

       This manpage and regpatch were written by Jelmer Vernooij.

NOTES

	1. Samba
	   http://www.samba.org/

	2. Samba Team
	   http://www.samba.org/samba/team/

[FIXME: source] 						    04/16/2014							       REGPATCH(1)