DEBIAN-CVE-2009-2813

Advisory lineage Upstream: 1 Downstream: 1

Upstream

CVE-2009-2813

Downstream

DSA-1908-1

Published: 14 Sept 2009, 16:30

Last modified:28 Apr 2026, 20:04

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

14 Sept 2009, 16:30

Published

Vulnerability first disclosed

28 Apr 2026, 20:04

Last Modified

Vulnerability information updated

Description

Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, as used in the SMB subsystem in Apple Mac OS X 10.5.8 when Windows File Sharing is enabled, Fedora 11, and other operating systems, does not properly handle errors in resolving pathnames, which allows remote authenticated users to bypass intended sharing restrictions, and read, create, or modify files, in certain circumstances involving user accounts that lack home directories.

Affected Systems

debian•samba
< 2:3.4.2-1 | < 2:3.4.2-1 | < 2:3.4.2-1 | < 2:3.4.2-1

References (1)

https://security-tracker.debian.org/tracker/CVE-2009-2813