SynopsisThe remote Samba server is vulnerable to multiple attack vectors.
DescriptionAccording to its banner, the version of Samba server on the remote host is potentially affected by multiple vulnerabilities :
- If a user in '/etc/passwd' is misconfigured to have an empty home directory then connecting to the home share of this user will use the root of the filesystem as the home directory. (CVE-2009-2813)
- Specially crafted SMB requests on authenticated SMB connections can send smbd into a 100% loop, causing a denial of service. (CVE-2009-2906)
- When 'mount.cifs' is installed as a setuid program, a user can pass it a credential or password path to which he or she does not have access and then use the '--verbose' option to view the first line of that file. (CVE-2009-2948)
SolutionUpgrade to Samba 3.0.37, 3.2.15, 3.3.8, 3.4.2, or later.