Samba vulnerability (CVE-2015-0240)


brandon

Recommended Posts

All versions of Samba from 3.5.0 to 4.2.0rc4 are vulnerable to an

unexpected code execution vulnerability in the smbd file server

daemon.

 

A malicious client could send packets that may set up the stack in

such a way that the freeing of memory in a subsequent anonymous

netlogon packet could allow execution of arbitrary code. This code

would execute with root privileges.

 

https://access.redhat.com/security/cve/CVE-2015-0240

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0240

 

Link to comment
  • 3 months later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.