ID CVE-2007-2407
Summary The Samba server on Apple Mac OS X 10.3.9 and 10.4.10, when Windows file sharing is enabled, does not enforce disk quotas after dropping privileges, which allows remote authenticated users to use disk space in excess of quota.
References
Vulnerable Configurations
  • Apple Mac OS X 10.3.9
    cpe:2.3:o:apple:mac_os_x:10.3.9
  • Apple Mac OS X 10.4.10
    cpe:2.3:o:apple:mac_os_x:10.4.10
  • Apple Mac OS X Server 10.3.9
    cpe:2.3:o:apple:mac_os_x_server:10.3.9
  • Apple Mac OS X Server 10.4.10
    cpe:2.3:o:apple:mac_os_x_server:10.4.10
  • Samba Samba Server
    cpe:2.3:a:samba:samba_server
CVSS
Base: 4.0 (as of 03-08-2007 - 09:36)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
NASL family MacOS X Local Security Checks
NASL id MACOSX_SECUPD2007-007.NASL
description The remote host is running a version of Mac OS X 10.4 or 10.3 which does not have the security update 2007-007 applied. This update contains several security fixes for the following programs : - bzip2 - CFNetwork - CoreAudio - cscope - gnuzip - iChat - Kerberos - mDNSResponder - PDFKit - PHP - Quartz Composer - Samba - SquirrelMail - Tomcat - WebCore - WebKit
last seen 2019-02-21
modified 2018-07-14
plugin id 25830
published 2007-08-02
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=25830
title Mac OS X Multiple Vulnerabilities (Security Update 2007-007)
refmap via4
apple APPLE-SA-2007-07-31
bid 25159
confirm http://docs.info.apple.com/article.html?artnum=306172
secunia 26235
vupen ADV-2007-2732
xf samba-filesystem-security-bypass(35738)
statements via4
contributor Joshua Bressers
lastmodified 2007-08-09
organization Red Hat
statement Not vulnerable. This flaw is specific to Mac OS X and does not affect any version of Red Hat Enterprise Linux.
Last major update 07-03-2011 - 21:54
Published 03-08-2007 - 06:17
Last modified 28-07-2017 - 21:31
Back to Top