Samba NSS_Info Plugin Local Privilege Escalation Vulnerability

Samba is prone to a local privilege-escalation vulnerability due to a logic error in the Winbind daemon.

An attacker can exploit this issue to gain 'groupid 0' privileges on UNIX computers running the vulnerable Samba software. This may aid them in further attacks.

Samba 3.0.25 through 3.0.25c are vulnerable to this issue.


 

Privacy Statement
Copyright 2010, SecurityFocus