Samba 'AndX' Request Heap-Based Buffer Overflow

critical Nessus Plugin ID 58327

Synopsis

The remote Samba service is vulnerable to a heap overflow attack.

Description

The remote Samba install is prone to a heap-based buffer overflow attack.

An attacker can exploit this issue to execute arbitrary code with the privileges of the application. Failed exploit attempts will result in a denial of service condition.

Solution

Apply patches from the vendor.

See Also

https://www.samba.org/samba/security/CVE-2012-0870.html

https://www.samba.org/samba/history/security.html

Plugin Details

Severity: Critical

ID: 58327

File Name: samba_andx_heap_overflow.nbin

Version: 1.227

Type: remote

Family: Misc.

Published: 3/13/2012

Updated: 11/22/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:samba:samba

Required KB Items: SMB/NativeLanManager, SMB/samba

Exploit Ease: No known exploits are available

Patch Publication Date: 2/21/2012

Vulnerability Publication Date: 2/21/2012

Reference Information

CVE: CVE-2012-0870

BID: 52103