Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Samba 3.x < 3.4.0 Buffer Overflow

High

Synopsis

The remote Samba server is affected by a heap-based buffer overflow vulnerability.

Description

According to its banner, the version of Samba is 3.x earlier than 3.4.0. It is therefore affected by an overflow condition. The application fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted 'Any Batched (AndX)' request packet, a remote attacker can potentially cause arbitrary code execution.

Solution

Upgrade Samba to version 3.4.0 or later.