Slashdot Mirror


Samba Exploit Discovered, Fixed

An anonymous reader submits: "Digital Defense reported a remote root vulnerability in Samba that has existed in Samba source code for over 8 years. If it hadn't been caught from a wild packet capture, who knows how many more years it might have gone on. Fixes for this, and at least three other vulnerabilities have been fixed today. This is a serious threat to many thousands of people.. Did you plan to spend your Monday upgrading to Samba 2.2.8a?" elijahao supplies some more information: "All stable versions are affected (2.x), but the 3.0 series is not. Here is a link to the News page. Check out a mirror near you to get the Source or Security patches from 2.2.7a, 2.2.8, or 2.0.10."

3 of 221 comments (clear)

  1. Re:Feature? by Jeremy+Allison+-+Sam · · Score: 4, Interesting

    I could show you MS bugs that we've known about for
    more than 8 years.

    Yes, they crash your MS SMB server. Yes, we've told
    Microsoft about them.

    Microsoft don't always fix bugs if there are no active
    exploits against them and knowledge of them is limited.

    I guess they just trust that we don't release exploits :-).

    Jeremy Allison,
    Samba Team.

  2. Re:Feature? by Jeremy+Allison+-+Sam · · Score: 4, Interesting

    If you put one of your Windows servers on a network
    I had access to I would be able to show you. I will
    not release the code publicly (for obvious reasons).
    Knowledge of these bugs would allow worms/viruses to
    utterly cripple Microsoft based corporate networks.

    If you choose not to believe me without exploit code
    then that's up to you, but I will not act in an
    unprofessional way to prove a point.

    Jeremy Allison,
    Samba Team.

  3. Wow by Zorton · · Score: 4, Interesting

    I think the thing that intrests me the most about this bug is how it was found. Does anyone have more information on what brought this bug to light?

    In a related subject people here need to lay off the samba developers. They are doing a great job at admiting the problem and taking responbility for it. Heck just today I discovered a bug with LinkSys Wireless Router/Switches relating to multicast. I called their tech support folks only to get promissed a call back after we had covered the basic configuration toubles. It is now almost 6:00pm my time, no call back. No accountability with these people. I wasn't even given the persons contact information nor was I given any time they might call me back.

    Compare that with OSS....I can remeber countless occasions being frustrated with a piece of software only to discover I had accually uncovered a bug. One simple e-mail to the author and I had a patch along with the stern instructions to e-mail him back if there where any more problems.

    No I am not microsoft/novell/apple bashing, I just feel that OSS comes out with more accountibility for their products. Perhaps I would hear back more often from commerical companies if I bought 500 copies of their product a month. But the same goes for about anything that isn't grassroots. Perhaps I just need more money :)

    Zorton
    btw: if anyone with a linksys BEFW11S4 switch can broadcast on any multicast IP and not have it lock up let me know :) I would be curious if it's a configuration problem (although tech support dosen't seem to think so) or a real bug.