The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 does not preserve /etc/sudoers permissions across modifications, which allows local users to obtain sensitive information (/etc/sudoers contents) by reading this file.
Saturday 3rd of February 2007
Tuesday 8th of March 2011
Find out if you have vulnerabilities exposing you to hackers and malware: Download Mageni's Free Edition
Mageni provides a free vulnerability scanning and management platform which helps you need to find, prioritize, remediate and manage your vulnerabilities.