Local Privilege Escalation via Symlink Attack in smb4k 0.4 and earlier versions

Local Privilege Escalation via Symlink Attack in smb4k 0.4 and earlier versions

CVE-2005-2851 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

smb4k 0.4 and other versions before 0.6.3 allows local users to read sensitive files via a symlink attack on the (1) smb4k.tmp or (2) sudoers temporary files.

Learn more about our User Device Pen Test.