Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2013-1863

Samba 4.x before 4.0.4, when configured as an Active Directory domain controller, uses world-writable permissions on non-default CIFS shares, which allows remote authenticated users to read, modify, create, or delete arbitrary files via standard filesystem operations.

  • Published: Mar 19, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-1863
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6
  • AV:N/AC:M/Au:S/C:P/I:P/A:P

CWEs:

Software From Fixed in
samba / samba 4.0.2 4.0.2.x
samba / samba 4.0.3 4.0.3.x
samba / samba 4.0.1 4.0.1.x
samba / samba 4.0.0 4.0.0.x