- Home
- CVEs with nessus.description==According to its banner, the version of Samba 3.x running on the remote host is earlier than 3.5.5. The 'sid_parse()' and related 'dom_sid_parse()' functions in such versions fail to correctly check their input lengths when reading a binary representation of a Windows SID (Security ID).
An attacker who is able to get a connection to a file share, either authenticated or via a guest connection, can leverage this issue to launch a stack-based buffer overflow attack against the affected smbd service and possibly execute arbitrary code.
Note that Nessus has not actually tried to exploit this issue or determine if one of the patches has been applied.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top