Home Unlabelled IBM Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2017-2619)

IBM Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2017-2619)

By
Tuesday, June 13, 2017
Read
Add Comment

A Samba vulnerability affects IBM Spectrum Scale SMB protocol access method which could allow a remote authenticated attacker to launch a symlink attack, caused by a race condition. An attacker could exploit this vulnerability using SMB1 unix extensions or NFS to create a symbolic link from a temporary file to various files on the system, which could allow the attacker to view non-exported files.

CVE(s): CVE-2017-2619

Affected product(s) and affected version(s):

IBM Spectrum Scale V4.2.0.0 thru V4.2.3

IBM Spectrum Scale V4.1.1.0 thru V4.1.1.14

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2soeAZ0
X-Force Database: http://ift.tt/2qJRBai

The post IBM Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2017-2619) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2sobrbo
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us