CVE-2007-0473

描述

The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 does not preserve /etc/sudoers permissions across modifications, which allows local users to obtain sensitive information (/etc/sudoers contents) by reading this file.

受影響套件(1)

• Debian/smb4kfrom 0, < 0.8.0-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-0473