CVE-2009-2948 (retired)

Priority
Description
mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8
and 3.4 before 3.4.2, when mount.cifs is installed suid root, does not
properly enforce permissions, which allows local users to read part of the
credentials file and obtain the password by specifying the path to the
credentials file and using the --verbose or -v option.
Package
Source: samba (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:18:03 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)