Samba 4.x.x全版本存在命令執行漏洞
責編:admin |2014-08-04 14:03:26Samba 4.0.0到4.1.10版本的nmbd(the NetBIOS name services daemon)被發現存在遠程命令執行漏洞。CVE編號為CVE-2014-3560。目前官方已經發布最新的補丁。
下面是官方公布的漏洞概要:
===========================================================
== Subject: Remote code execution in nmbd
==
== CVE ID#: CVE-2014-3560
==
== Versions: Samba 4.0.0 to 4.1.10
==
== Summary: Samba 4.0.0 to 4.1.10 are affected by a
== remote code execution attack on
==unauthenticated nmbd NetBIOS name services.
==
===========================================================
===========
Description
===========
All current versions of Samba 4.x.x are vulnerable to a remote code
execution vulnerability in the nmbd NetBIOS name services daemon.
A malicious browser can send packets that may overwrite the heap of
the target nmbd NetBIOS name services daemon. It may be possible to
use this to generate a remote code execution vulnerability as the
superuser (root).
FreeBuf科普
Samba,是種用來讓UNIX系列的操作系統與微軟Windows操作系統的SMB/CIFS(Server Message Block/Common Internet File System)網絡協議做鏈接的自由軟件。第三版不僅可訪問及分享SMB的文件夾及打印機,本身還可以集成入Windows Server的域名,扮演為域名控制站(Domain Controller)以及加入Active Directory成員。簡而言之,此軟件在Windows與UNIX系列OS之間搭起一座橋梁,讓兩者的資源可互通有無。