This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.
Remote code may be run on the remote server.
The remote Samba server, according to its version number, is vulnerable to
a remote buffer overrun resulting from an integer overflow vulnerability.
To exploit this flaw, an attacker would need to send to the remote host
a malformed packet containing hundreds of thousands of ACLs, which would
in turn cause an integer overflow resulting in a small pointer being allocated.
An attacker needs a valid account or enough credentials to exploit this
Upgrade to Samba 3.0.10 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false
Family: Gain a shell remotely
Nessus Plugin ID: 15985 ()
Bugtraq ID: 11973
CVE ID: CVE-2004-1154
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.