Users login

Create an account »


Users login

Home » Hacking News » Samba Insecure TMP file Symbolic Link Vulnerability

Samba Insecure TMP file Symbolic Link Vulnerability

by platon on April 21st, 2001 Samba is a flexible file sharing packaged maintained by the Samba development group. It provides interoperatability between UNIX and Microsoft Windows systems, permitting the sharing of files and printing services...

A problem in the package could make it possible to deny service to legitimate users. Due to the insecure creation of files in the /tmp file system, it is possible for a user to create a symbolic link to other files owned by privileged users in the system, such as system device files, and write data to the files.
This vulnerability makes it possible for a local user to deny service to other users of the system, and potentially gain elevated privileges.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.


Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »