Mandrake Linux Security Advisory : samba (MDKSA-2001:062)
Critical Nessus Plugin ID 13877
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionMichal Zalewski has found a vulnerability in all versions of Samba prior to 2.0.10 where if a client sends an invalid netbios name Samba could be tricked into appending it's log to files writable by root.
This can be very dangerous if combined with a symlink created by a local user. Note that the log files must be specified as %m.log in order for this to work, and Mandrake Linux ships Samba by default using log.%m, thus it is not vulnerable 'out of the box'.
SolutionUpdate the affected samba, samba-client and / or samba-common packages.