SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (File Transfer/Sharing)  >   Samba Vendors:   Samba.org
Samba Discloses Portions of System Memory to Remote Authenticated Users
SecurityTracker Alert ID:  1030308
SecurityTracker URL:  http://securitytracker.com/id/1030308
CVE Reference:   CVE-2014-0178   (Links to External Site)
Date:  May 29 2014
Impact:   Disclosure of system information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.6.6 - 4.1.7
Description:   A vulnerability was reported in Samba. A remote authenticated user can obtain portions of system memory on the target system.

A remote authenticated user can send a specially crafted FSCTL_GET_SHADOW_COPY_DATA or FSCTL_SRV_ENUMERATE_SNAPSHOTS request to cause the target service to return an uninitialized buffer containing portions of system memory.

Systems with a non-default VFS module providing the get_shadow_copy_data_fn() hook enabled are affected.

Christof Schmitt of the Samba team reported this vulnerability.

Impact:   A remote authenticated user can obtain portions of system memory on the target system.
Solution:   The vendor has issued patches, available at:

http://www.samba.org/samba/security/

The fixes will be included in pending versions 4.0.18 and 4.1.8.

The vendor's advisory is available at:

http://www.samba.org/samba/security/CVE-2014-0178

Vendor URL:  www.samba.org/samba/security/CVE-2014-0178 (Links to External Site)
Cause:   Access control error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Jul 9 2014 (Red Hat Issues Fix) Samba Discloses Portions of System Memory to Remote Authenticated Users
Red Hat has issued a fix for Red Hat Enterprise Linux 7.
Sep 16 2014 (Oracle Issues Fix for Solaris) Samba Discloses Portions of System Memory to Remote Authenticated Users
Oracle has issued a fix for Solaris 10 and 11.2.
May 11 2016 (HP Issues Fix) Samba Discloses Portions of System Memory to Remote Authenticated Users
HP has issued a fix for HP-UX 11.31.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC