Slashdot Mirror

← Back to Stories (view on slashdot.org)

Possible SAMBA Vulnerability

Posted by michael on Thursday November 21, 2002 @04:43AM from the apt-get-time-again dept.

veg writes "The samba team have released 2.2.7 following the discovery of a secureity hole in versions 2.2.2 to 2.2.6 that could lead to remote root access. Eeek! Full story on the samba site"

2 of 32 comments (clear)

Min score:

Reason:

Sort:

Too much of a good thing by MarkusQ · 2002-11-21 05:16 · Score: 5, Funny

The samba team have released 2.2.7 following the discovery of a secureity hole in versions 2.2.2 to 2.2.6 that could lead to remote root access.
So, basically, they're vacillating on the question of full SMB compatibility?
-- MarkusQ
Re:Phew by Jeremy+Allison+-+Sam · 2002-11-21 14:42 · Score: 5, Funny

If you can craft an exploit for this, please
mail it to me and we'll talk about getting you
working full time on Samba.

Yes, it could crash smbd (for the authenticated
user) but causing it to run code is another matter.

We couldn't work out how to do that, but hey, I'm
willing to believe you might know how. Show me.

Or are you just mouthing off with no expertise to
back it up ?

Regards,

Jeremy Allison,
Samba Team.