According to its banner, the version of Samba is 3.4.x earlier than 3.4.17, 3.5.x earlier than 3.5.15, or 3.6.x earlier than 3.6.5. It is therefore affected by a flaw in the application security checks for the ‘CreateAccount’, ‘OpenAccount’, ‘AddAccountRights’, and ‘RemoveAccountRights’ remote procedure calls in the local security authority. This may allow a remote attacker to manipulate the ownership of arbitrary files and directories.
Binary data 9344.prm