Samba 3.x < 3.4.0 Buffer Overflow
High Nessus Network Monitor Plugin ID 9349
SynopsisThe remote Samba server is affected by a heap-based buffer overflow vulnerability.
DescriptionAccording to its banner, the version of Samba is 3.x earlier than 3.4.0. It is therefore affected by an overflow condition. The application fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted 'Any Batched (AndX)' request packet, a remote attacker can potentially cause arbitrary code execution.
SolutionUpgrade Samba to version 3.4.0 or later.