Family: Gain root remotely --> Category: infos
Samba Directory ACL Integer Overflow Vulnerability Scan
Vulnerability Scan Summary
checks samba version
Detailed Explanation for this Vulnerability Test
The remote Samba server, according to its version number, is vulnerable to
a remote buffer overrun resulting from an integer overflow vulnerability.
To exploit this flaw, a possible hacker would need to send to the remote host
a malformed packet containing hundreds of thousands of ACLs, which would
in turn cause an integer overflow resulting in a small pointer being allocated.
A possible hacker needs a valid account or enough credentials to exploit this
Solution : Upgrade to Samba 3.0.10 when available
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.