CVE-2004-0186 : smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local us

smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting a Samba share that contains a setuid root program, whose setuid attributes are not cleared when the share is mounted.

Published 2004-03-15 05:00:00

Updated 2017-10-10 01:30:19

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2004-0186

Linux » Linux Kernel » Version: 2.6.1 Update RC2
cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0
cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.1 Update RC1
cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6 Test9 Cvs
cpe:2.3:o:linux:linux_kernel:2.6_test9_cvs:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test11
cpe:2.3:o:linux:linux_kernel:2.6.0:test11:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test2
cpe:2.3:o:linux:linux_kernel:2.6.0:test2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test9
cpe:2.3:o:linux:linux_kernel:2.6.0:test9:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test1
cpe:2.3:o:linux:linux_kernel:2.6.0:test1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test10
cpe:2.3:o:linux:linux_kernel:2.6.0:test10:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test7
cpe:2.3:o:linux:linux_kernel:2.6.0:test7:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test8
cpe:2.3:o:linux:linux_kernel:2.6.0:test8:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test5
cpe:2.3:o:linux:linux_kernel:2.6.0:test5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test6
cpe:2.3:o:linux:linux_kernel:2.6.0:test6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test3
cpe:2.3:o:linux:linux_kernel:2.6.0:test3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 2.6.0 Update Test4
cpe:2.3:o:linux:linux_kernel:2.6.0:test4:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 3.0.0
cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0
cpe:2.3:a:samba:samba:2.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2004-0186

EPSS FAQ

0.53%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 65 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2004-0186

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2004-0186

http://marc.info/?l=bugtraq&m=107657505718743&w=2

'Re: Samba 3.x + kernel 2.6.x local root vulnerability' - MARC
https://exchange.xforce.ibmcloud.com/vulnerabilities/15131

Samba smbmnt allows elevated privileges CVE-2004-0186 Vulnerability Report
http://www.securityfocus.com/bid/9619

Exploit;Patch;Vendor Advisory
http://marc.info/?l=bugtraq&m=107636290906296&w=2

'Samba 3.x + kernel 2.6.x local root vulnerability' - MARC
http://www.debian.org/security/2004/dsa-463

Debian -- The Universal Operating System
Patch;Vendor Advisory

Jump to

Vulnerability Details : CVE-2004-0186

Products affected by CVE-2004-0186

Exploit prediction scoring system (EPSS) score for CVE-2004-0186

CVSS scores for CVE-2004-0186

References for CVE-2004-0186