smbd -- buffer-overrun vulnerability

ID F3D3F621-38D8-11D9-8FFF-000C6E8F12EF
Type freebsd
Reporter FreeBSD
Modified 2008-09-26T00:00:00


Caused by improper bounds checking of certain trans2 requests, there is a possible buffer overrun in smbd. The attacker needs to be able to create files with very specific Unicode filenames on the share to take advantage of this issue.