Samba 4.x < 4.0.21 / 4.1.11 nmbd Remote Code Execution
High Nessus Plugin ID 76973
SynopsisThe remote Samba server is affected by a remote code execution vulnerability.
DescriptionAccording to its banner, the version of Samba on the remote host is 4.x prior to 4.0.21 / 4.1.11. It is, therefore, affected by a flaw in the NetBIOS name services daemon (nmbd). This flaw may allow an attacker to execute arbitrary code as the superuser.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
SolutionInstall the patch referenced in the project's advisory or upgrade to 4.0.21 / 4.1.11 or later.