oval:org.mitre.oval:def:19662

Definition Id: oval:org.mitre.oval:def:19662

Oval ID:	oval:org.mitre.oval:def:19662
Title:	CIFS Server (Samba), Remote Cross Site Request Forgery (CSRF), Denial of Service (DoS)
Description:	Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2011-2522	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02768 platforms HP Release B.11.11 AND HP Release B.11.23 AND filesets tests CIFS-Development.CIFS-PRG version is less than A.02.04.05 AND CIFS-Server.CIFS-ADMIN version is less than A.02.04.05 AND CIFS-Server.CIFS-DOC version is less than A.02.04.05 AND CIFS-Server.CIFS-LIB version is less than A.02.04.05 AND CIFS-Server.CIFS-RUN version is less than A.02.04.05 AND CIFS-Server.CIFS-UTIL version is less than A.02.04.05 OR Criteria meets HP Security Bulletin HPSBUX02768 HP-UX B.11.31 AND filesets tests CIFS-CFSM.CFSM-KRN version is less than A.02.04.05 AND CIFS-CFSM.CFSM-RUN version is less than A.02.04.05 AND CIFS-Development.CIFS-PRG version is less than A.02.04.05 AND CIFS-Server.CIFS-ADMIN version is less than A.02.04.05 AND CIFS-Server.CIFS-DOC version is less than A.02.04.05 AND CIFS-Server.CIFS-LIB version is less than A.02.04.05 AND CIFS-Server.CIFS-RUN version is less than A.02.04.05 AND CIFS-Server.CIFS-UTIL version is less than A.02.04.05 OR Criteria meets HP Security Bulletin HPSBUX02768 platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests CIFS-Development.CIFS-PRG version is less than A.03.01.04 AND CIFS-Server.CIFS-ADMIN version is less than A.03.01.04 AND CIFS-Server.CIFS-DOC version is less than A.03.01.04 AND CIFS-Server.CIFS-LIB version is less than A.03.01.04 AND CIFS-Server.CIFS-RUN version is less than A.03.01.04 AND CIFS-Server.CIFS-UTIL version is less than A.03.01.04

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0292s

Facebook rss twitter linkedin mail