Ubuntu Security Notice (C) 2010-2013 Canonical, Inc. / NASL script (C) 2010-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Andrew Bartlett discovered that Samba did not correctly validate the
length when parsing SIDs. A remote attacker could send a specially
crafted request to the server and cause a denial of service, or
possibly execute arbitrary code with the privileges of the Samba
The default compiler options for Ubuntu 8.04 LTS and newer should
reduce the vulnerability to a denial of service.
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false