Gain root remotely : Samba Mangling Overflow

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.13657

Categoría: Gain root remotely

Título: Samba Mangling Overflow

Resumen: NOSUMMARY

Descripción: Description:

The remote Samba server, according to its version number,
may be vulnerable to a buffer overflow if the option 'mangling method' is
set to 'hash' in smb.conf (which is not the case by default).

An attacker may exploit this flaw to execute arbitrary commands on the remote
host.

Solution : upgrade to Samba 2.2.10 or 3.0.5
See also : http://us1.samba.org/samba/whatsnew/samba-2.2.10.html
See also : http://us1.samba.org/samba/whatsnew/samba-3.0.5.html
Risk factor : High

Referencia Cruzada: BugTraq ID: 10781
Common Vulnerability Exposure (CVE) ID: CVE-2004-0686
Bugtraq: 20040722 Security Release - Samba 3.0.5 and 2.2.10 (Google Search)
http://marc.info/?l=bugtraq&m=109051340810458&w=2
Bugtraq: 20040722 TSSA-2004-014 - samba (Google Search)
http://marc.info/?l=bugtraq&m=109052891507263&w=2
Bugtraq: 20040722 [OpenPKG-SA-2004.033] OpenPKG Security Advisory (samba) (Google Search)
http://marc.info/?l=bugtraq&m=109051533021376&w=2
Conectiva Linux advisory: CLA-2004:851
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000851
Conectiva Linux advisory: CLA-2004:854
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000854
http://marc.info/?l=bugtraq&m=109785827607823&w=2
http://www.gentoo.org/security/en/glsa/glsa-200407-21.xml
HPdes Security Advisory: SSRT4782
http://marc.info/?l=bugtraq&m=109094272328981&w=2
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:071
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10461
http://www.redhat.com/support/errata/RHSA-2004-259.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101584-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57664-1
SuSE Security Announcement: SUSE-SA:2004:022 (Google Search)
http://www.novell.com/linux/security/advisories/2004_22_samba.html
http://www.trustix.org/errata/2004/0039/
XForce ISS Database: samba-mangling-method-bo(16786)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16786

Copyright This script is Copyright (C) 2004 Tenable Network Security

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.13657
Categoría:	Gain root remotely
Título:	Samba Mangling Overflow
Resumen:	NOSUMMARY
Descripción:	Description: The remote Samba server, according to its version number, may be vulnerable to a buffer overflow if the option 'mangling method' is set to 'hash' in smb.conf (which is not the case by default). An attacker may exploit this flaw to execute arbitrary commands on the remote host. Solution : upgrade to Samba 2.2.10 or 3.0.5 See also : http://us1.samba.org/samba/whatsnew/samba-2.2.10.html See also : http://us1.samba.org/samba/whatsnew/samba-3.0.5.html Risk factor : High
Referencia Cruzada:	BugTraq ID: 10781 Common Vulnerability Exposure (CVE) ID: CVE-2004-0686 Bugtraq: 20040722 Security Release - Samba 3.0.5 and 2.2.10 (Google Search) http://marc.info/?l=bugtraq&m=109051340810458&w=2 Bugtraq: 20040722 TSSA-2004-014 - samba (Google Search) http://marc.info/?l=bugtraq&m=109052891507263&w=2 Bugtraq: 20040722 [OpenPKG-SA-2004.033] OpenPKG Security Advisory (samba) (Google Search) http://marc.info/?l=bugtraq&m=109051533021376&w=2 Conectiva Linux advisory: CLA-2004:851 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000851 Conectiva Linux advisory: CLA-2004:854 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000854 http://marc.info/?l=bugtraq&m=109785827607823&w=2 http://www.gentoo.org/security/en/glsa/glsa-200407-21.xml HPdes Security Advisory: SSRT4782 http://marc.info/?l=bugtraq&m=109094272328981&w=2 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:071 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10461 http://www.redhat.com/support/errata/RHSA-2004-259.html http://sunsolve.sun.com/search/document.do?assetkey=1-26-101584-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57664-1 SuSE Security Announcement: SUSE-SA:2004:022 (Google Search) http://www.novell.com/linux/security/advisories/2004_22_samba.html http://www.trustix.org/errata/2004/0039/ XForce ISS Database: samba-mangling-method-bo(16786) https://exchange.xforce.ibmcloud.com/vulnerabilities/16786
Copyright	This script is Copyright (C) 2004 Tenable Network Security