10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.974 High
EPSS
Percentile
99.9%
Richard van Eeden of Microsoft Vulnerability Research discovered that
Samba, a SMB/CIFS file, print, and login server for Unix, contains a
flaw in the netlogon server code which allows remote code execution with
root privileges from an unauthenticated connection.
For the oldstable distribution (squeeze), this problem has been fixed in
version 2:3.5.6~dfsg-3squeeze12.
For the stable distribution (wheezy), this problem has been fixed in
version 2:3.6.6-6+deb7u5.
We recommend that you upgrade your samba packages.