Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:131: samba Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the samba package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:131 (samba).
Karol Wiesek discovered a bug in the input validation routines in Samba 3.x
used to match filename strings containing wildcard characters. This bug may
allow a user to consume more than normal amounts of CPU cycles which would
impact the performance and response of the server. In some cases it could also
cause the server to become entirely unresponsive.
The updated packages are patched to prevent this problem with patches from the
Samba team. This vulnerability is fixed in samba 3.0.8.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:131
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.