This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Samba is a suite of programs used by machines to share files,
printers, and other information.
An input validation flaw was found in the way Samba handled Any
Batched (AndX) requests. A remote, unauthenticated attacker could send
a specially crafted SMB packet to the Samba server, possibly resulting
in arbitrary code execution with the privileges of the Samba server
Users of Samba are advised to upgrade to these updated packages, which
contain a backported patch to resolve this issue. After installing
this update, the smb service will be restarted automatically.
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.9
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 61276 ()
CVE ID: CVE-2012-0870