Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.
                
            References
                    | Link | Resource | 
|---|---|
| http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html | Exploit Patch Vendor Advisory | 
| http://www.securityfocus.com/bid/1874 | Exploit Patch Vendor Advisory | 
| https://exchange.xforce.ibmcloud.com/vulnerabilities/5445 | |
| http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html | Exploit Patch Vendor Advisory | 
| http://www.securityfocus.com/bid/1874 | Exploit Patch Vendor Advisory | 
| https://exchange.xforce.ibmcloud.com/vulnerabilities/5445 | 
Configurations
                    History
                    No history.
Information
                Published : 2000-12-19 05:00
Updated : 2025-04-03 01:03
NVD link : CVE-2000-0936
Mitre link : CVE-2000-0936
CVE.ORG link : CVE-2000-0936
JSON object : View
Products Affected
                samba
- samba
CWE
                