Candidate: CVE-2010-0728
PublicDate: 2010-03-10 20:13:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0728
Description:
 smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled,
 runs with the CAP_DAC_OVERRIDE capability, which allows remote
 authenticated users to bypass intended file permissions via standard
 filesystem operations with any client.
Ubuntu-Description:
Notes:
 mdeslaur> new code introduced in 3.4.6
Bugs:
 https://bugzilla.samba.org/show_bug.cgi?id=7222
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_samba:
upstream_samba: released (3.4.7)
dapper_samba: not-affected (3.0.22-1ubuntu3.10)
hardy_samba: not-affected (3.0.28a-1ubuntu4.10)
intrepid_samba: not-affected (2:3.2.3-1ubuntu3.7)
jaunty_samba: not-affected (2:3.3.2-1ubuntu3.3)
karmic_samba: not-affected (2:3.4.0-3ubuntu5.4)
devel_samba: released (2:3.4.6~dfsg-1ubuntu2)