Announcement Announcement Module
Collapse
No announcement yet.
Remote Code Execution Vulnerability In Samba Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Remote Code Execution Vulnerability In Samba

    Remote Code Execution Vulnerability In Samba

    Severity Rating: MEDIUM

    Systems Affected
    Samba versions 4.0.0 to 4.1.10

    Overview
    A Vulnerability has been reported in Samba which could allow a remote attacker to execute arbitrary code on the target system.

    Description
    The vulnerability exists in “nmbd” NetBIOS name services daemon in Samba.
    A remote attacker could exploit this vulnerability by sending a specially crafted packet to trigger a heap overflow in the target system.
    Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code on the target system with root privileges.


    Solution
    Apply appropriate patches as mentioned by vendor

    http://ftp.samba.org/pub/samba/patch...-CVE-2014-3560.
    patch

    Vendor Information

    Samba
    http://www.samba.org/samba/security/CVE-2014-3560
    References

    Security tracker
    http://securitytracker.com/id/1030663

    Security Focus
    http://www.securityfocus.com/bid/69021
Tag Cloud Tag Cloud Module
Collapse
Working...
X