Oracle Solaris Third-Party Patch Update : samba (cve_2013_4124_denial_of)
Medium Nessus Plugin ID 80764
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet. (CVE-2013-4124)
SolutionUpgrade to Solaris 22.214.171.124.0.