Samba < 2.2.8 Multiple Vulnerabilities
Critical Nessus Plugin ID 11398
SynopsisArbitrary code may be run on the remote server.
DescriptionThe remote Samba server, according to its version number, is vulnerable to a remote buffer overflow when receiving specially crafted SMB fragment packets.
An attacker needs to be able to access at least one share to exploit this flaw.
In addition, it is reported that Samba contains a flaw related to the handling of .reg files that may allow a local user to overwrite arbitrary file.
SolutionUpgrade to Samba 2.2.8.