Vulnerability Details CVE-1999-1288
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 36.2%
CVSS Severity
CVSS v2 Score 4.6
References
- http://www.caldera.com/support/security/advisories/SA-1998.35.txt
- http://www.securityfocus.com/archive/1/11397
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1406
- http://www.caldera.com/support/security/advisories/SA-1998.35.txt
- http://www.securityfocus.com/archive/1/11397
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1406
Products affected by CVE-1999-1288
-
cpe:2.3:a:samba:samba:1.9.18
-
cpe:2.3:o:caldera:openlinux:1.0
-
cpe:2.3:o:caldera:openlinux:1.1
-
cpe:2.3:o:caldera:openlinux:1.2
-
cpe:2.3:o:caldera:openlinux:1.3
-
cpe:2.3:o:redhat:linux:-
-
cpe:2.3:o:redhat:linux:1.0
-
cpe:2.3:o:redhat:linux:1.1
-
cpe:2.3:o:redhat:linux:2.0
-
cpe:2.3:o:redhat:linux:2.0.34
-
cpe:2.3:o:redhat:linux:2.1
-
cpe:2.3:o:redhat:linux:2.4.2
-
cpe:2.3:o:redhat:linux:2.6.2
-
cpe:2.3:o:redhat:linux:3.0
-
cpe:2.3:o:redhat:linux:3.0.3
-
cpe:2.3:o:redhat:linux:4.0
-
cpe:2.3:o:redhat:linux:4.1
-
cpe:2.3:o:redhat:linux:4.2
-
cpe:2.3:o:redhat:linux:5.0
-
cpe:2.3:o:redhat:linux:5.1
-
cpe:2.3:o:redhat:linux:5.2
-
cpe:2.3:o:redhat:linux:6.0
-
cpe:2.3:o:redhat:linux:6.1
-
cpe:2.3:o:redhat:linux:6.2
-
cpe:2.3:o:redhat:linux:6.2e
-
cpe:2.3:o:redhat:linux:7
-
cpe:2.3:o:redhat:linux:7.0
-
cpe:2.3:o:redhat:linux:7.1
-
cpe:2.3:o:redhat:linux:7.2
-
cpe:2.3:o:redhat:linux:7.3
-
cpe:2.3:o:redhat:linux:8.0
-
cpe:2.3:o:redhat:linux:9
-
cpe:2.3:o:redhat:linux:9.0
-
cpe:2.3:o:turbolinux:turbolinux:*