Description: | Description:
The remote host is missing an update to samba announced via advisory MDKSA-2007:244.
Alin Rad Pop of Secunia Research discovered a stack buffer overflow in how Samba authenticates remote users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash, or possibly execute arbitrary code with the permissions of the Samba server.
The updated packages have been patched to correct these issues.
Affected: 2007.0, 2007.1, 2008.0, Corporate 3.0, Corporate 4.0
Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:244
Risk factor : Critical
CVSS Score: 9.3
|