Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog - SANS Internet Storm Center InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

SAMBA "root" credential remote code execution.

Published: 2012-04-10
Last Updated: 2012-04-10 20:18:56 UTC
by Swa Frantzen (Version: 1)
2 comment(s)

Samba - "a Windows SMB/CIFS fileserver for UNIX" seems to have a serious security vulnerability that samba versions 3.6.3 and all versions prior to it have a vulnerability that allows remote code execution as the "root" user from an anonymous connection.

Yep, time to upgrade SAMBA.

Hat tip: Charlie

Swa Frantzen -- Section 66

Keywords: samba
2 comment(s)
Diary Archives