|
Family: Gain root remotely --> Category: infos
Samba Unicode Buffer Overflow Vulnerability Scan
Vulnerability Scan Summary checks samba version
Detailed Explanation for this Vulnerability Test
The remote Samba server, according to its version number, has
a bug in the length checking for encrypted password change
requests from clients. A client could potentially send an encrypted
password, which, when decrypted with the old hashed password could be
used as a buffer overrun attack on the stack of smbd.
Solution : upgrade to Samba 2.2.7
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|