Samba receive_smb_raw()函数堆溢出漏洞

BUGTRAQ ID: 29404 CVECAN ID: CVE-2008-1105 Samba是一套实现SMB（Server Messages Block）协议、跨平台进行文件共享和打印共享服务的程序。 Samba的lib/utilsock.c文件中的receivesmbraw函数在解析SMB报文时存在堆溢出漏洞。如果用户受骗连接到了恶意的服务器（如跟随了smb://链接），或攻击者向配置为本地或域主浏览器的nmbd服务器发送了特制报文，就可能触发这个溢出，导致执行任意指令。 Samba 3.0.0 - 3.0.29 RedHat ------...

Samba < 3.0.30 receive_smb_raw Function Remote Buffer Overflow

According to its banner, the version of the Samba server on the remote host is reportedly affected by a boundary error in 'nmbd' within the 'receivesmbraw' function in 'lib/utilsock.c' when parsing SMB packets received in a client context. By sending specially crafted packets to an 'nmbd' server...