>>>> ROOT Exploit in SAMBA <<<<<<

"A flaw has been detected in the Samba main smbd code which could allow 
an external attacker to remotely and anonymously gain Super User (root) 
privileges on a server running a Samba server. This flaw exists in 
previous versions of Samba from 2.0.x to 2.2.7a inclusive. This is a 
serious problem and all sites should either upgrade to Samba 2.2.8 
immediately or prohibit access to TCP ports 139 and 445."
	http://us3.samba.org/samba/samba.html

Binaries are available from Samba for RedHat, and some other
distributions. So far as I can tell, the RedHat update mirrors
I normally use do not have 'official' RedHat RPMs yet.

Of course, if ports 139 and 445 are blocked in your firewall,
then the risk  is mostly limited to attacks from machines inside
your firewall. However, I know from my own scanning of exploited
machines which have run attacks against one of my servers,
many, many Samba users expose these ports to the Inet, and
more than a few don't realize that they are doing so.

An article in The Register
  [ http://212.100.234.54/content/55/29775.html ]*
reports that blackhat exploit code for this vuln already is
in the wild, but I didn't see any mention of this on the
Samba site. Here is the link to the release notes.

Ben


* The Register is moving servers; I can't get to their site
via the domain name, but the IP address works.
0
Ben
3/17/2003 8:33:43 PM
grc.techtalk.linux 3969 articles. 0 followers. Follow

1 Replies
1555 Views

Similar Articles

[PageSpeed] 24
Get it on Google Play
Get it on Apple App Store

Ben wrote:

> Samba site. Here is the link to the release notes.


http://us3.samba.org/samba/whatsnew/samba-2.2.8.html
0
Ben
3/17/2003 8:37:49 PM
Reply:

Similar Artilces:

>>>> Heads up <<<<
I just got a warning from Norton that "PamelaSetup-Basic.exe" has a virus in it. The name is "VirusBurst" Luckily, I did not install this software and Norton's quarantined it so I could delte it, which I have done. Symantec has not completed analysis of this particular piece of garbage but it did catch the sig. If you have installed Pamela, you may be in trouble. Duffy wrote: > I just got a warning from Norton that "PamelaSetup-Basic.exe" has a virus > in it. The name is "VirusBurst" > > Luckily, I did not install...

>>>> BUY RAM <<<<
.. ~~~*@@@*~~~ ================================================== ================================================== ENTER HERE: >>> http://web-for-you.cn/about/buy-ram <<< ================================================== ================================================== .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. ...

>>>> CAPITALS GAMES <<<<
.. ~~~!!!~~~ ================================================== ================================================== CLICK HERE TO ENTER: >>> http://web-paradise.cn/3/capitals-games <<< ================================================== ================================================== .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. ....

C<< >> vs C<< >> vs C<< x >>
Ugh. So we all know that there's this syntax for formatting codes (n=E9s "interio= r sequences") like C<< x >>. And that tokenizes as three tokens: "C<< ", open-C code "x", content " >>" close-code matching the C open-code And this is explicated by what I wrote in perlpodspec where I say that such a code... * starts with a capital letter (just US-ASCII [A-Z]) followed by two or more "<"'s, one or more whitespace characters, * any number of characters * one or more whit...

>>>> BLU-RAY MOVIES <<<<
.. ~~~!!!~~~ ================================================== ================================================== CLICK HERE TO ENTER: >>> http://web-paradise.cn/2/blu-ray-movies <<< ================================================== ================================================== .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. ....

[PATCH] correctly handle C<< >> and C<<< >>> in diagnostics
This is just a quick hack; ideally someone would make it use an actual pod parser. --- perl/lib/diagnostics.pm.orig 2003-12-30 15:48:47.000000000 -0800 +++ perl/lib/diagnostics.pm 2004-05-25 01:54:31.735904000 -0700 @@ -314,10 +314,10 @@ sub noop { return $_[0] } # spensive for a noop sub bold { my $str =$_[0]; $str =~ s/(.)/$1\b$1/g; return $str; } sub italic { my $str = $_[0]; $str =~ s/(.)/_\b$1/g; return $str; } - s/[BC]<(.*?)>/bold($1)/ges; + s/C<<< (.*?) >>>|C<< (.*?) >>|[BC]<(.*?)>/bold($+)/ges; ...

How to strip a string of <html>, ,</html>, <body>, </body>, <form ... >, </form> tags?
I have stream which is the HTML input of a page. Now I want to use only that part of this page, that is within <form .....> and </form> tags, and excluding these tags.How would I go about stripping <html>, ,</html>, <body>, </body>, <form ... >, </form>, <head> and </head> tags? I have to make sure that <head ...javascript..> and its corresponding </head> tags are not stripped in this process.sun21170    Wait... you said you wanted to strip the head tags, and you're also saying you need to NOT strip the ...

The Man Who Debunks Virus Myths <<<hero???>>>R.Rosenberger Vmyths.com!!!<<<SIGH>>>
http://www.securitynewsportal.com/article.php?sid=1368&mode=thread&order=0 -- Regard: Joh@nnes´┐Ż 1216771 Ont.Inc. "Nothing is more damaging to a new truth than an old error" Take a look at the following from the article: (Begin quote) "Rosenberger is not just a random ornery writer with a website and a bone to pick. He's an experienced programmer, a systems administrator and a man of mystery with high-level CIA security clearance. Information about Rosenberger's status with the CIA was confirmed by an inquiry to a government office, and Ro...

Difference between <% %> <%# %> <%= %> ?
I have some server controls to which I want to assign the visible property using the server tags instead of code behind, but I can't manage to do it, so far I'm using:     Public Shared Function accesible(ByVal user As USERRow) As Boolean        Select Case user.rol            Case "Administrator"                Return True            Cas...

>>>BOOKMARKS<<<
I dont understand the hep page for Lsot Bookmarks - can someone guide me please? I need to know what to look for (instructions in how to do it) As I dont know what im doing im new to using PC's RAJA SINGH wrote: > I dont understand the hep page for Lsot Bookmarks - can someone guide me > please? I need to know what to look for (instructions in how to do it) As I > dont know what im doing im new to using PC's please keep your posting together so we can follow whats going on. Thanks. Close FF. Now, using your file manager, locate the FF profile. To l...

<<<THUD>>>
http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3882364&sliceId=1&docTypeID=DT_TID_1_1&dialogID=104807193&stateId=0%200%20104803654 Novell actually gave a projected release date for something? <ponders if this date is before or after the new maintenance policy kicks in> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 First, terrible subject line. Second, the offender has been shot. ;-) Not really.... this guy is awesome just because he is crazy like that. Third, before the patch date stuff (February I think). Goo...

How about <<< and >>> ops?
This has probably come up before, but I think it would be good if perl had two additional arithemetic operators: >>> would be a right shift _without_ sign extension under use integer (currently, under use integer, >> is at the mercy of the underlying C lib). <<< would be a left roll ($x <<< $y would be equivalent to ( ($x << $y) | (2**$y-1) & ($x >> (32-$y)) ) these two ops would come in handy when implementing cryptographic algorithms. I guess you could argue that >>> should be a right roll, but then I don'...

"<table></table>" and "<frameset><frame></frame></frameset>" in perl/tk
Dear my friends... Anybody would be so kind telling me what is similar in perl/tk to arrange the location of a form written in perl/tk? I want a nice look for my perl/tk application. Somewhat like this below: 1. Name : <place to type-in> 2. Address : <place to type-in> 3. Telephone : <place to type-in> I have made the main menu of my application with "Menubutton". And I want if the user click on the menu that what the user see is only the aimed application displayed on the determined area (under the main menu) but the menu has no change in po...

Use of <code>, <var>, <kbd>, and <samp>
Is there any policy as to whether <code>, <var>, <kbd> and <samp> can all be used, and if so, whether they should only be used for XUL, etc. or other code documented at the site, or whether they can also be used to refer to code which is not intended as the subject of any documentation, but which is used as an example. For example, the template tutorial indicates that <content>'s @uri attribute can be set to any variable name, such as "?start" or "?uri". Could these be referenced with <var> too, or is it the policy to co...

Web resources about - >>>> ROOT Exploit in SAMBA <<<<<< - grc.techtalk.linux

Resources last updated: 1/15/2016 9:14:26 PM