Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code - SecurityTracker

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Category: Application (File Transfer/Sharing) > Samba

Vendors: Samba.org

Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code

SecurityTracker Alert ID: 1024434

SecurityTracker URL: http://securitytracker.com/id/1024434

CVE Reference: CVE-2010-3069 (Links to External Site)

Date: Sep 14 2010

Impact: Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 3.0 - 3.5.4

Description: A vulnerability was reported in Samba. A remote user can execute arbitrary code on the target system.

A remote user can send specially crafted Windows Security ID data to trigger a stack overflow in sid_parse() and execute arbitrary code on the target system. The code will run with the privileges of the target smbd service.

Andrew Bartlett of Cisco reported this vulnerability.

Impact: A remote user can execute arbitrary code on the target system.

Solution: The vendor has issued a fix (3.5.5).

The vendor's advisory is available at:

http://samba.org/samba/security/CVE-2010-3069.html

Vendor URL: samba.org/samba/security/CVE-2010-3069.html (Links to External Site)

Cause: Boundary error

Underlying OS: Linux (Any), UNIX (Any)

Message History: This archive entry has one or more follow-up message(s) listed below.

Sep 14 2010	(Red Hat Issues Fix) Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code Red Hat has issued a fix for Red Hat Enterprise Linux 3, 4, and 5 and for Red Hat Enterprise Linux 4.7, 5.3, and 5.4 Extended Update Support.
Sep 14 2010	(Red Hat Issues Fix for samba3x) Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code Red Hat has issued a fix for samba3x for Red Hat Enterprise Linux 5.
Nov 10 2010	(Red Hat Issues Fix) Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code Red Hat has issued a fix for Red Hat Enterprise Linux 6.
Jan 13 2011	(Oracle Issues Fix) Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code Oracle has issued a fix for Solaris 9, 10, and 11.
Jun 16 2011	(HP Issues Fix for HP-UX) Samba Buffer Overflow in sid_parse() Lets Remote Users Execute Arbitrary Code HP has issued a fix for HP-UX 11.11, 11.23, and 11.31.

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
This web site uses cookies for web analytics. Learn More
Copyright 2019, SecurityGlobal.net LLC