CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6442

The owner_set function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended administrative change.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.9%

CVSS Severity

CVSS v2 Score 5.8

References

Products affected by CVE-2013-6442

Samba » Samba » Version: 4.0.0

cpe:2.3:a:samba:samba:4.0.0
Samba » Samba » Version: 4.0.1

cpe:2.3:a:samba:samba:4.0.1
Samba » Samba » Version: 4.0.10

cpe:2.3:a:samba:samba:4.0.10
Samba » Samba » Version: 4.0.11

cpe:2.3:a:samba:samba:4.0.11
Samba » Samba » Version: 4.0.12

cpe:2.3:a:samba:samba:4.0.12
Samba » Samba » Version: 4.0.13

cpe:2.3:a:samba:samba:4.0.13
Samba » Samba » Version: 4.0.14

cpe:2.3:a:samba:samba:4.0.14
Samba » Samba » Version: 4.0.15

cpe:2.3:a:samba:samba:4.0.15
Samba » Samba » Version: 4.0.2

cpe:2.3:a:samba:samba:4.0.2
Samba » Samba » Version: 4.0.3

cpe:2.3:a:samba:samba:4.0.3
Samba » Samba » Version: 4.0.4

cpe:2.3:a:samba:samba:4.0.4
Samba » Samba » Version: 4.0.5

cpe:2.3:a:samba:samba:4.0.5
Samba » Samba » Version: 4.0.6

cpe:2.3:a:samba:samba:4.0.6
Samba » Samba » Version: 4.0.7

cpe:2.3:a:samba:samba:4.0.7
Samba » Samba » Version: 4.0.8

cpe:2.3:a:samba:samba:4.0.8
Samba » Samba » Version: 4.0.9

cpe:2.3:a:samba:samba:4.0.9
Samba » Samba » Version: 4.1.0

cpe:2.3:a:samba:samba:4.1.0
Samba » Samba » Version: 4.1.1

cpe:2.3:a:samba:samba:4.1.1
Samba » Samba » Version: 4.1.2

cpe:2.3:a:samba:samba:4.1.2
Samba » Samba » Version: 4.1.3

cpe:2.3:a:samba:samba:4.1.3
Samba » Samba » Version: 4.1.4

cpe:2.3:a:samba:samba:4.1.4
Samba » Samba » Version: 4.1.5

cpe:2.3:a:samba:samba:4.1.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6442

Products

Pricing

Contact Us