Samba 3.0.0 'SamrChangePassword' RCE
Medium Nessus Plugin ID 82580
SynopsisThe file and print server running on the remote host is affected by a remote code execution vulnerability.
DescriptionThe version of Samba running on the remote host is affected by a remote code execution vulnerability due to improper validation of user-supplied input when passing RPC messages from external scripts to a shell. A remote, authenticated attacker can exploit this via the use of shell metacharacters during login negotiations when the 'username map script' option is enabled, or during the invocation of other printer and file management MS-RPC calls.
SolutionUpgrade to version 3.0.25 or later