VULHUB ™

CIFS/9000 is the HP implementation of the Samba file sharing software. It is distributed and maintained by HP. When a CIFS/9000 server is deployed with the unix password sync option enabled, and does not specify the "%u" format identifer in the "passwd program" entry of the CIFS configuration file, it may be possible for a local user to gain change the passwords for arbitrary userids. This may result in elevated privileges on the CIFS server for a remote user.

CIFS/9000 is the HP implementation of the Samba file sharing software. It is distributed and maintained by HP. When a CIFS/9000 server is deployed with the unix password sync option enabled, and does not specify the "%u" format identifer in the "passwd program" entry of the CIFS configuration file, it may be possible for a local user to gain change the passwords for arbitrary userids. This may result in elevated privileges on the CIFS server for a remote user.