new buffer overflow attack on samba 3.6.3 -> enables unauthenticated remote root access
Bug #980758 reported by
Sean DS
This bug report is a duplicate of:
Bug #978458: CVE-2012-1182: "root" credential remote code execution.
Edit
Remove
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| samba (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
binary hint: samba
references:
[2] http://
[3] https:/
A fix has been released and a patch is available, we should definately get this fix into the LTS, as so many people use samba.
CVE References
| visibility: | private → public |
| summary: |
- new buffer overflow attack on samba 3.6.3 -> enables remote root access + new buffer overflow attack on samba 3.6.3 -> enables unauthenticated + remote root access |
Revision history for this message
| Sean DS (se4n-1) wrote | #1 |
| Changed in samba (Ubuntu): | |
| status: | New → Invalid |
| security vulnerability: | yes → no |
To post a comment you must log in.
Here is the patch. Samba 3.6.4 does not have this vulnerability.