VYPR
Unrated severityNVD Advisory· Published Jun 25, 2009· Updated Jun 16, 2026

CVE-2009-1888

CVE-2009-1888

Description

The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*range: >=3.0.31,<=3.0.35
    • (no CPE)range: <3.0.35 for 3.0.x, <3.2.13 for 3.2.x, <3.3.6 for 3.3.x
  • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*+ 3 more
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
  • Debian/linux2 versions
    cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
  • osv-coords2 versions
    < 6.5-1.5+ 1 more
    • (no CPE)range: < 6.5-1.5
    • (no CPE)range: < 4.5.0-1.1

Patches

Vulnerability mechanics

References

20

News mentions

0

No linked articles in our index yet.