Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Samba 3.3.11 / 3.4.6 / 3.5.0 Security Bypass Vulnerability

High

Synopsis

The remote Samba server is vulnerable to a security bypass attack.

Description

According to its banner, the version of Samba Server on the remote host is potentially affected by a security bypass vulnerability. A flaw exists that causes all smbd processes to inherit CAP_DAC_OVERRIDE capabilities, allowing all file system access to be allowed even when permissions should have denied access.

Solution

Upgrade to Samba 3.3.12, 3.4.7, 3.5.1.