CVE-2007-0473 in smb4kinfo

Summary

The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 does not preserve /etc/sudoers permissions across modifications, which allows local users to obtain sensitive information (/etc/sudoers contents) by reading this file.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/24/2007

Disclosure

02/03/2007

Moderation

VulDB entry created

Entries

VDB-34813 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.0

EPSS

0.00060

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0473
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0473
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0473/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!