Mandriva Update For Samba MDKSA-2007:244 (samba) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Alin Rad Pop of Secunia Research discovered a stack buffer overflow in how Samba authenticates remote users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash, or possibly execute arbitrary code with the permissions of the Samba server. The updated packages have been patched to correct these issues.

Affected

samba on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64, Mandriva Linux 2007.1, Mandriva Linux 2007.1/X86_64, Mandriva Linux 2008.0, Mandriva Linux 2008.0/X86_64

Severity

Classification

CVE CVE-2007-6015

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:020 (xine-lib)
Mandrake Security Advisory MDVSA-2009:131-1 (apr-util)
Mandrake Security Advisory MDVSA-2009:121 (lcms)
Mandrake Security Advisory MDVSA-2009:041 (jhead)
Mandrake Security Advisory MDVSA-2009:162 (java-1.6.0-openjdk)

Mandriva Update for samba MDKSA-2007:244 (samba)

Take action and discover your vulnerabilities