Detections
Analytics

CentOS 3 / 4 / 5 : samba (CESA-2007:1114)

high Nessus Plugin ID 29256

Synopsis

The remote CentOS host is missing one or more security updates.

Description

Updated samba packages that fix a security issue and a bug are now available for Red Hat Enterprise Linux.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

Samba is a suite of programs used by machines to share files, printers, and other information.

A stack-based buffer overflow flaw was found in the way Samba authenticates remote users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash, or execute arbitrary code with the permissions of the Samba server.
(CVE-2007-6015)

Red Hat would like to thank Alin Rad Pop of Secunia Research for responsibly disclosing this issue.

This update also fixes a regression caused by the fix for CVE-2007-4572, which prevented some clients from being able to properly access shares.

Users of Samba are advised to upgrade to these updated packages, which contain a backported patch to resolve these issues.

Solution

Update the affected samba packages.

See Also

http://www.nessus.org/u?6e5faf30

http://www.nessus.org/u?f967ab08

http://www.nessus.org/u?5eaf99aa

http://www.nessus.org/u?2ef88df8

http://www.nessus.org/u?2124eee1

http://www.nessus.org/u?57c4d28a

Plugin Details

Severity: High

ID: 29256

File Name: centos_RHSA-2007-1114.nasl

Version: 1.20

Type: local

Agent: unix

Published: 12/11/2007

Updated: 1/4/2021

Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:centos:centos:samba, p-cpe:/a:centos:centos:samba-client, p-cpe:/a:centos:centos:samba-common, p-cpe:/a:centos:centos:samba-swat, cpe:/o:centos:centos:3, cpe:/o:centos:centos:4, cpe:/o:centos:centos:5

Required KB Items: Host/local_checks_enabled, Host/CentOS/release, Host/CentOS/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 12/10/2007

Vulnerability Publication Date: 11/16/2007

Reference Information

CVE: CVE-2007-4572, CVE-2007-6015

BID: 26791, 27163

CWE: 119

RHSA: 2007:1114