Description
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
References (3)
Core 3
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_caldera
http://www.caldera.com/support/security/advisories/SA-1998.35.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/1406
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/11397
Scores
EPSS
0.0007
EPSS Percentile
20.8%
Details
Status
published
Products (7)
caldera/openlinux
1.0
caldera/openlinux
1.1
caldera/openlinux
1.2
caldera/openlinux
1.3
redhat/linux
samba/samba
1.9.18
turbolinux/turbolinux
Published
Nov 19, 1998
Tracked Since
Feb 18, 2026