SAMBA Long Password Buffer Overflow Vulnerability
BID:1816
Info
SAMBA Long Password Buffer Overflow Vulnerability
| Bugtraq ID: | 1816 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Sep 25 1997 12:00AM |
| Updated: | Sep 25 1997 12:00AM |
| Credit: | This vulnerability was posted to the BUGTRAQ mailing list on Thu Sep 25 1997 by [email protected]. |
| Vulnerable: |
Samba Samba 1.9.19 |
| Not Vulnerable: | |
Discussion
SAMBA Long Password Buffer Overflow Vulnerability
Samba is an open source software suite that provides seamless file and print services to SMB/CIFS clients. Certain older versions of Samba had a remotely exploitable buffer overflow vulnerability. This vulnerability was in the password function of the authentication mechanism which is to say a user could supply an overly long password to the Samba server and trigger a buffer overflow.
Samba is an open source software suite that provides seamless file and print services to SMB/CIFS clients. Certain older versions of Samba had a remotely exploitable buffer overflow vulnerability. This vulnerability was in the password function of the authentication mechanism which is to say a user could supply an overly long password to the Samba server and trigger a buffer overflow.
Exploit / POC
Solution / Fix
SAMBA Long Password Buffer Overflow Vulnerability
Solution:
This issue was addressed in 1997, should your version of Samba contain this vulnerability it is suggested that you upgrade to the most recent version from:
http://www.samba.org
Solution:
This issue was addressed in 1997, should your version of Samba contain this vulnerability it is suggested that you upgrade to the most recent version from:
http://www.samba.org