Samba 4.11.2 Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) Vulnerability

Summary

A flaw was found in the samba-client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames.

Credit:

The information has been provided by Michael Hanselmann

The original article can be found at:https://www.samba.org/samba/security/CVE-2019-10218.html

 


Details

An attacker could use this vulnerability to create files outside of the current working directory using the privileges of the client user.

 

Vulnerable Systems:

samba 4.11.2

samba 4.10.10 

samba 4.9.15

 

CVE Information:

CVE-2019-10218

 

Disclosure Timeline:
Published Date:11/6/2019