Vulnerability Database

290,278

Total vulnerabilities in the database

CVE-2007-0473

The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 does not preserve /etc/sudoers permissions across modifications, which allows local users to obtain sensitive information (/etc/sudoers contents) by reading this file.

  • Published: Feb 4, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-0473
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 1.9
  • AV:L/AC:M/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
smb4k / smb4k 0.7 0.7.x
smb4k / smb4k 0.4 0.4.x
smb4k / smb4k 0.6 0.6.x
smb4k / smb4k 0.5 0.5.x