SMB Symlink Traversal Vulnerability in D-Link DIR-865L
CVE-2013-4855
8.8HIGH
Summary
The D-Link DIR-865L suffers from a misconfiguration in its SMB service that permits symlink traversal. This vulnerability allows attackers to create symbolic links leading to directories outside of the intended Samba share, potentially exposing sensitive files and compromising system integrity. Such misconfigurations can facilitate unauthorized access to critical network resources, making it essential for administrators to assess and rectify these vulnerabilities promptly.
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved