February 23, 201511 yr All versions of Samba from 3.5.0 to 4.2.0rc4 are vulnerable to an unexpected code execution vulnerability in the smbd file server daemon. A malicious client could send packets that may set up the stack in such a way that the freeing of memory in a subsequent anonymous netlogon packet could allow execution of arbitrary code. This code would execute with root privileges. https://access.redhat.com/security/cve/CVE-2015-0240 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0240
February 24, 201511 yr Question does this issue require an attacker to be on your LAN? Yes, If you happen to have a comprised desktop, this could then somehow infect a samba server. Another potential issue would be if samba were exposed to the internet inadequately or by accident.
February 25, 201511 yr Question does this issue require an attacker to be on your LAN? Yes, If you happen to have a comprised desktop, this could then somehow infect a samba server. Another potential issue would be if samba were exposed to the internet inadequately or by accident. Good to know!
June 16, 201511 yr FYI, unRaid-6.0.0 uses Samba 4.1.17 which includes fix for this vulnerability. In a future unRaid release we'll be updating to Samba 4.2.x.
Archived
This topic is now archived and is closed to further replies.