Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200612-16 Normal: Links Arbitrary Samba Command Execution

gentoo
Calendar Grey December 14, 2006
Dist Gentoo Esm H88
The advisory from Gentoo highlights a critical threat in the Links browser, which could enable attackers to execute arbitrary commands on Samba servers remotely.
Links does not properly validate "smb://" URLs, making it vulnerable to the execution of arbitrary Samba commands.

Summary

Gentoo Linux Security Advisory GLSA 200612-16 https://security.gentoo.org/ Severity: Normal Title: Links: Arbitrary Samba command execution Date: December 14, 2006 Bugs: #157028 ID: 200612-16

Synopsis ======= Links does not properly validate "smb://" URLs, making it vulnerable to the execution of arbitrary Samba commands.
Background ========= Links is a web browser running in both graphics and text modes.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/links < 2.1_pre26 >= 2.1_pre26
========== Teemu Salmela discovered that Links does not properly validate "smb://" URLs when it runs smbclient commands.
Impact ===== A remote attacker could entice a use...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo remote exploit arbitrary execution normal severity samba command links browser

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo remote exploit arbitrary execution normal severity samba command links browser

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here