cpe:/a:samba:samba:3.2.0 cpe:/a:samba:samba:3.2.1 cpe:/a:samba:samba:3.2.2 cpe:/a:samba:samba:3.2.3 cpe:/a:samba:samba:3.2.4 cpe:/a:samba:samba:3.2.5 cpe:/a:samba:samba:3.2.6 CVE-2009-0022 2009-01-05T15:30:02.390-05:00 2018-10-03T17:57:40.737-04:00 6.3 NETWORK MEDIUM SINGLE_INSTANCE COMPLETE NONE NONE http://nvd.nist.gov 2009-01-06T10:37:00.000-05:00 SECTRACK 1021513 BID 33118 SECUNIA 33379 SECUNIA 33392 SECUNIA 33431 OSVDB 51152 VUPEN ADV-2009-0017 FEDORA FEDORA-2009-0268 MANDRIVA MDVSA-2009:042 UBUNTU USN-702-1 MISC http://master.samba.org/samba/ftp/patches/security/samba-3.2.6-CVE-2009-0022.patch CONFIRM http://www.samba.org/samba/security/CVE-2009-0022.html XF samba-file-system-security-bypass(47733) Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.