CVE-1999-1288

Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.

Published: Nov 19, 1998
Updated: Apr 13, 2023
CVE: CVE-1999-1288
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
samba / samba	1.9.18	1.9.18.x
caldera / openlinux	1.2	1.2.x
turbolinux / turbolinux	-	-
caldera / openlinux	1.0	1.0.x
redhat / linux	-	-
caldera / openlinux	1.1	1.1.x
caldera / openlinux	1.3	1.3.x

http://www.caldera.com/support/security/advisories/SA-1998.35.txt
http://www.securityfocus.com/archive/1/11397
https://exchange.xforce.ibmcloud.com/vulnerabilities/1406

Vulnerability Database

289,599

CVE-1999-1288