| VID |
23097 |
| Severity |
40 |
| Port |
139 |
| Protocol |
TCP |
| Class |
Samba |
| Detailed Description |
The Samba server, according to its version number, has to a remote buffer overflow vulnerability by malformed Unicode filename.
Samba is an Open Source/Free Software package that provides seamless file and print services to SMB/CIFS clients. Samba versions 3.0.x through 3.0.7 are vulnerable to a remote buffer overflow vulnerability, caused by an improper boundary checking when handling malformed Unicode filenames in reply to certain trans2 requests. A remote attacker who can create files with very specific Unicode filenames on the Samba share, may potentially exploit this vulnerability to execute arbitrary code in the context of the vulnerable service.
* Note: If this check solely relied on the version number of the remote Samba server to assess this vulnerability, then this might be a false positive.
* References:
http://www.securityfocus.com/archive/1/381177
* Platforms Affected:
Samba Project, Samba versions 3.0.x through 3.0.7
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of samba (3.0.8 or later), available from the Samba Web site at http://samba.org/samba/samba.html
For Samba 3.0.7:
Apply the CAN-2004-0882 patch, available from the iDEFENSE Security Advisory at http://www.samba.org/samba/ftp/patches/security/samba-3.0.7-CAN-2004-0882.patch
For Red Hat Linux:
Upgrade to the latest samba package, as listed in Red Hat Security Advisory RHSA-2004:632-17 at https://rhn.redhat.com/errata/RHSA-2004-632.html
For SuSE Linux:
Upgrade to the latest samba package, as listed in SuSE Security Announcement SUSE-SA:2004:040 at http://www.linuxsecurity.com/advisories/suse_advisory-5171.html
For Trustix Secure Linux:
Upgrade to the latest samba package, as listed in Trustix Secure Linux Security Advisory TSLSA-2004-0051 at http://www.trustix.net/errata/2004/0051/
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2004-0882 (CVE) |
| Related URL |
11678 (SecurityFocus) |
| Related URL |
(ISS) |
|
