The vulnerability of the clidfs.c, libsmb_server.c, and smbXcli_base.c components of the Samba network communication software package lies in the lack of a mechanism to verify input data. This allows attackers to compromise the integrity of the data.

The vulnerability of the clidfs.c, libsmbserver.c, and smbXclibase.c components of the Samba network communication software package is related to a lack of mechanisms for checking input data. Exploiting this vulnerability could allow an attacker to compromise the integrity of data...

UBUNTU-CVE-2015-5296

Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 supports connections that are encrypted but unsigned, which allows man-in-the-middle attackers to conduct encrypted-to-unencrypted downgrade attacks by modifying the client-server data stream, related to clidfs.c,...