Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2007-0475

Back to Search

SUSE Linux Security Vulnerability: CVE-2007-0475

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
02/03/2007
Created
07/25/2018
Added
12/12/2013
Modified
07/04/2017

Description

Multiple stack-based buffer overflows in utilities/smb4k_*.cpp in Smb4K before 0.8.0 allow local users, when present on the Smb4K sudoers list, to gain privileges via unspecified vectors related to the args variable and unspecified other variables, in conjunction with the sudo configuration.

Solution(s)

  • suse-upgrade-smb4k
  • suse-upgrade-suse-release

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;