Bug in Samba makes root execute code remotely possible




The developers behind Samba, the software used for file sharing via the smb protocol from Windows, Linux have rushed Friday released a patch for a serious security problem. All 4.xx versions were vulnerable.

The vulnerability allows a browser to overwrite the nmbd server daemon that can communicate with NetBIOS packets. As a result, it is possible to remotely perform root-code so made ​​Samba known.

Samba versions 4.1.11 and 4.0.21 deemed security spending, just two days after version 4.0.20 have been released. In addition there are also for older versions patches have become available. Samba says administrators should install the patch. Asap For those who can not, there is a workaround available. That simply means that the nmbd server must not be performed.

It’s not the first time that a serious vulnerability in Samba is encountered. Two years ago, could also execute malicious code remotely root. At that time all versions since 2003 vulnerable.


In: Technology & Gadgets Asked By: [15575 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »