VYPR
Medium severity6.5NVD Advisory· Published Mar 13, 2016· Updated Jun 17, 2026

CVE-2015-7560

CVE-2015-7560

Description

The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4 allows remote authenticated users to modify arbitrary ACLs by using a UNIX SMB1 call to create a symlink, and then using a non-UNIX SMB1 call to write to the ACL content.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

28

Patches

Vulnerability mechanics

References

19

News mentions

0

No linked articles in our index yet.