Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Gain root remotely >> Samba Unicode Buffer Overflow


Vulnerability Assessment Details

Samba Unicode Buffer Overflow

Vulnerability Assessment Summary
checks samba version

Detailed Explanation for this Vulnerability Assessment

The remote Samba server, according to its version number, has
a bug in the length checking for encrypted password change
requests from clients. A client could potentially send an encrypted
password, which, when decrypted with the old hashed password could be
used as a buffer overrun attack on the stack of smbd.

Solution : upgrade to Samba 2.2.7
Network Security Threat Level: High

Networks Security ID: 6210

Vulnerability Assessment Copyright: This script is Copyright (C) 2002 Renaud Deraison

Cables, Connectors

Lenovo ThinkPad T460s Core i7 6600U 2.6GHz 4GB RAM No HDD 14'' No OS Laptop
$27.99
Lenovo ThinkPad T460s Core i7 6600U 2.6GHz 4GB RAM No HDD 14'' No OS Laptop pictureLenovo Legion 7i, 15.6 FHD IPS 240Hz, i7-10750H, RTX 2070 Super MaxQ, 16GB 1.5TB
$1322.0
Lenovo Legion 7i, 15.6 FHD IPS 240Hz, i7-10750H, RTX 2070 Super MaxQ, 16GB 1.5TB pictureLenovo ThinkPad T470 Laptop i5-6200U 2.3GHz 8GB 14 HD 1366x768 250GB SSD
$365.0
Lenovo ThinkPad T470 Laptop i5-6200U 2.3GHz 8GB 14 HD 1366x768 250GB SSD pictureLenovo ThinkPad SL410 Intel Core 2 Duo T6570 2.1 GHz 4GB RAM 500GB HDD 14" Win10
$99.99
Lenovo ThinkPad SL410 Intel Core 2 Duo T6570 2.1 GHz 4GB RAM 500GB HDD 14


Discussions

No Discussions have been posted on this vulnerability.