{"id":"CVE-2007-0473","details":"The writeFile function in core/smb4kfileio.cpp in Smb4K before 0.8.0 does not preserve /etc/sudoers permissions across modifications, which allows local users to obtain sensitive information (/etc/sudoers contents) by reading this file.","modified":"2026-01-27T04:07:45.125400Z","published":"2007-02-03T23:28:00Z","withdrawn":"2026-01-27T04:07:45.125400Z","references":[{"type":"FIX","url":"http://secunia.com/advisories/23937"},{"type":"ADVISORY","url":"http://secunia.com/advisories/23984"},{"type":"ADVISORY","url":"http://secunia.com/advisories/24111"},{"type":"ADVISORY","url":"http://secunia.com/advisories/24469"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:042"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2007/0393"},{"type":"FIX","url":"https://lists.berlios.de/pipermail/smb4k-announce/2006-December/000037.html"},{"type":"WEB","url":"http://developer.berlios.de/bugs/?func=detailbug&bug_id=9630&group_id=769"},{"type":"WEB","url":"http://developer.berlios.de/project/shownotes.php?release_id=11706"},{"type":"WEB","url":"http://developer.berlios.de/project/shownotes.php?release_id=11902"},{"type":"WEB","url":"http://developer.berlios.de/project/shownotes.php?release_id=9777"},{"type":"WEB","url":"http://lists.suse.com/archive/suse-security-announce/2007-Jan/0015.html"},{"type":"WEB","url":"http://www.gentoo.org/security/en/glsa/glsa-200703-09.xml"},{"type":"WEB","url":"http://www.securityfocus.com/bid/22299"}],"schema_version":"1.7.3"}