CVE-2004-0186

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2004-0186

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2004-0186.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2004-0186

Downstream

DEBIAN-CVE-2004-0186

DSA-463

Published

2004-03-15T05:00:00Z

Modified

2025-08-09T19:01:26Z

Summary

[none]

Details

smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting a Samba share that contains a setuid root program, whose setuid attributes are not cleared when the share is mounted.

References

http://www.debian.org/security/2004/dsa-463
http://www.securityfocus.com/bid/9619
http://marc.info/?l=bugtraq&m=107636290906296&w=2
http://marc.info/?l=bugtraq&m=107657505718743&w=2
http://www.osvdb.org/3916
https://exchange.xforce.ibmcloud.com/vulnerabilities/15131

CVE-2004-0186

Affected packages