CVE-2000-0936

Samba <2.0.7 - Info Disclosure

Title source: llm

Description

Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.

Exploits (1)

exploitdb WORKING POC VERIFIED

by miah · bashlocallinux

https://www.exploit-db.com/exploits/20341

View Code ZIP pw:eip

References (3)

[Exploit, Patch, Vendor Advisory] http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/1874

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/5445

Scores

EPSS 0.0075

EPSS Percentile 73.2%

Details

Status published

Products (1)

samba/samba 2.0.7

Published Dec 19, 2000

Tracked Since Feb 18, 2026