DataEndure | Managed Cybersecurity. It's about time.

Services
- Managed Services
  Cloud Security
  
  Email Security
  
  Endpoint Security
  
  Network Security
  
  N-SOC
  
  Compliance
  GRC
  
  Readiness Assessments
  
  Risk Management
  
  Complimentary Health Checks
  Network Health Check
  
  Resiliency Workshop
  
  Security Health Check
  
  In-Depth Assessments
  Application Dependency Mapping
  
  CISO Assessment
  
  Dark Data Assessment
  
  Network Assessment
  
  Penetration Testing
  
  Why Layered Defense is Critical
  
  Layered security is about protecting all vectors that have access into your network, and the network is no longer just inside your datacenter. It's wherever your endpoints, people, data, and assets reside.
  
  View the Video >>
Expertise
- Security & Compliance
  Layered Defense Strategy
  
  Cyber Threats & Solutions
  
  Information Management
  Data Resilience
  
  Cloud & Data Science
  Digital Transformation
  
  Infrastructure
  Scale and Efficiency
  
  Network
  Network Resilience
  
  What does "Good" Cybersecurity look like?
  
  Discover key insights for robust cybersecurity, addressing critical gaps and navigating evolving threats.
  
  Read the Blog >>
Industries
Company
- About Us
  Leadership
  
  News
  
  In the Community
  
  Careers
  
  Contact Us
  
  Partners
  Strategic Partners
  
  Technology Partners
  
  Partner Program
  
  Leading the Way Through Change
  
  Explore over 40 years of industry leadership and lasting impact as we delve into the remarkable history of Data Endure.
  
  Learn More >>
Resources
- Learn
  Security Advisories
  
  Blog
  
  Case Studies
  
  Podcast
  
  Events
  
  Videos
  
  White Papers
  
  Connect
  Contact Us
  
  Newsletter Sign Up
  
  Partner Program
  
  Watch our Tech Talk Series
  
  Stay up to date on the latest in cybersecurity with our monthly Tech talk series.
  
  Watch the Series >>

Security Advisory: Vulnerability in Samba 4.9.0 through 4.10.7

September 9, 2019

Situation
A vulnerability (CVE-2019-10197) was found in Samba versions 4.9.0 through 4.10.7 that could allow for unintended access, addition, and/or modification to files over the network.

Problem
The vulnerability is a flaw with Samba SMB server which does not properly prevent clients from escaping outside the share root directory.

Implication
An attacker could use this vulnerability to gain access to files outside of the Samba share which could lead to the disclosure of sensitive information or addition/modification of data outside the Samba share.

Need
Samba has released patches and it is advised to apply them if you are running versions lower than 4.9.13 and 4.10.8, or you can install the latest Samba stable release.

NEW BLOG:Seeing the Bigger Picture: Achieving Digital Resilience

+ +

Chat with usLiveChat