ID de Prueba:	1.3.6.1.4.1.25623.1.0.58996
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2007:1017
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2007:1017. Samba is a suite of programs used by machines to share files, printers, and other information. A buffer overflow flaw was found in the way Samba creates NetBIOS replies. If a Samba server is configured to run as a WINS server, a remote unauthenticated user could cause the Samba server to crash or execute arbitrary code. (CVE-2007-5398) A heap based buffer overflow flaw was found in the way Samba authenticates users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash. Careful analysis of this flaw has determined that arbitrary code execution is not possible, and under most circumstances will not result in a crash of the Samba server. (CVE-2007-4572) A flaw was found in the way Samba assigned group IDs under certain conditions. If the winbind nss info parameter in smb.conf is set to either sfu or rfc2307, Samba users are incorrectly assigned the group ID of 0. (CVE-2007-4138) Red Hat would like to thank Alin Rad Pop of Secunia Research, Rick King, and the Samba developers for responsibly disclosing these issues. All Samba users are advised to upgrade to these updated packages, which contain a backported patch to correct these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2007-1017.html http://www.redhat.com/security/updates/classification/#critical Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4572 1018954 http://securitytracker.com/id?1018954 20080108 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages http://www.securityfocus.com/archive/1/485936/100/0/threaded 20080123 UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages http://www.securityfocus.com/archive/1/486859/100/0/threaded 237764 http://sunsolve.sun.com/search/document.do?assetkey=1-26-237764-1 26454 http://www.securityfocus.com/bid/26454 27450 http://secunia.com/advisories/27450 27679 http://secunia.com/advisories/27679 27682 http://secunia.com/advisories/27682 27691 http://secunia.com/advisories/27691 27701 http://secunia.com/advisories/27701 27720 http://secunia.com/advisories/27720 27731 http://secunia.com/advisories/27731 27787 http://secunia.com/advisories/27787 27927 http://secunia.com/advisories/27927 28136 http://secunia.com/advisories/28136 28368 http://secunia.com/advisories/28368 29341 http://secunia.com/advisories/29341 30484 http://secunia.com/advisories/30484 30736 http://secunia.com/advisories/30736 30835 http://secunia.com/advisories/30835 ADV-2007-3869 http://www.vupen.com/english/advisories/2007/3869 ADV-2007-4238 http://www.vupen.com/english/advisories/2007/4238 ADV-2008-0064 http://www.vupen.com/english/advisories/2008/0064 ADV-2008-0859 http://www.vupen.com/english/advisories/2008/0859/references ADV-2008-1712 http://www.vupen.com/english/advisories/2008/1712/references ADV-2008-1908 http://www.vupen.com/english/advisories/2008/1908 APPLE-SA-2007-12-17 http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html DSA-1409 http://www.debian.org/security/2007/dsa-1409 FEDORA-2007-3402 https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00472.html GLSA-200711-29 http://www.gentoo.org/security/en/glsa/glsa-200711-29.xml HPSBUX02316 http://marc.info/?l=bugtraq&m=120524782005154&w=2 HPSBUX02341 http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01475657 MDKSA-2007:224 http://www.mandriva.com/security/advisories?name=MDKSA-2007:224 RHSA-2007:1013 http://www.redhat.com/support/errata/RHSA-2007-1013.html RHSA-2007:1016 http://www.redhat.com/support/errata/RHSA-2007-1016.html RHSA-2007:1017 http://www.redhat.com/support/errata/RHSA-2007-1017.html SSA:2007-320-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.447739 SSRT071495 SSRT080075 SUSE-SA:2007:065 http://www.novell.com/linux/security/advisories/2007_65_samba.html TA07-352A http://www.us-cert.gov/cas/techalerts/TA07-352A.html USN-544-1 https://usn.ubuntu.com/544-1/ USN-544-2 http://www.ubuntu.com/usn/usn-544-2 USN-617-1 http://www.ubuntu.com/usn/usn-617-1 [Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages http://lists.vmware.com/pipermail/security-announce/2008/000002.html http://docs.info.apple.com/article.html?artnum=307179 http://us1.samba.org/samba/security/CVE-2007-4572.html http://www.vmware.com/security/advisories/VMSA-2008-0001.html https://issues.rpath.com/browse/RPL-1894 oval:org.mitre.oval:def:11132 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11132 oval:org.mitre.oval:def:5643 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5643 samba-nmbd-bo(38501) https://exchange.xforce.ibmcloud.com/vulnerabilities/38501 Common Vulnerability Exposure (CVE) ID: CVE-2007-4138 1018681 http://www.securitytracker.com/id?1018681 20070911 [SECURITY] Winbind's rfc2307 & SFU nss_info plugin in Samba 3.0.25[a-c] assigns users a primary gid of 0 by default http://www.securityfocus.com/archive/1/479078/100/0/threaded 25636 http://www.securityfocus.com/bid/25636 26764 http://secunia.com/advisories/26764 26776 http://secunia.com/advisories/26776 26795 http://secunia.com/advisories/26795 26834 http://secunia.com/advisories/26834 3135 http://securityreason.com/securityalert/3135 ADV-2007-3120 http://www.vupen.com/english/advisories/2007/3120 FEDORA-2007-2145 https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00201.html SSA:2007-255-02 http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.419439 http://www.samba.org/samba/security/CVE-2007-4138.html https://issues.rpath.com/browse/RPL-1705 oval:org.mitre.oval:def:10375 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10375 samba-smb-privilege-escalation(36560) https://exchange.xforce.ibmcloud.com/vulnerabilities/36560 Common Vulnerability Exposure (CVE) ID: CVE-2007-5398 BugTraq ID: 26455 http://www.securityfocus.com/bid/26455 Bugtraq: 20071115 Secunia Research: Samba "reply_netbios_packet()" Buffer OverflowVulnerability (Google Search) http://www.securityfocus.com/archive/1/483744/100/0/threaded Bugtraq: 20080108 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages (Google Search) Bugtraq: 20080123 UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages (Google Search) Cert/CC Advisory: TA07-352A Debian Security Information: DSA-1409 (Google Search) HPdes Security Advisory: HPSBUX02316 HPdes Security Advisory: HPSBUX02341 HPdes Security Advisory: SSRT071495 HPdes Security Advisory: SSRT080075 http://secunia.com/secunia_research/2007-90/advisory/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10230 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5811 http://securitytracker.com/id?1018953 http://secunia.com/advisories/27742 http://securityreason.com/securityalert/3372 SuSE Security Announcement: SUSE-SA:2007:065 (Google Search) XForce ISS Database: samba-replynetbiospacket-bo(38502) https://exchange.xforce.ibmcloud.com/vulnerabilities/38502
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.