Samba "send_mailslot()" function buffer overflow

Overview The Samba "sendmailslot" function contains a stack-based buffer overflow vulnerability which could be exploited by a remote, unauthenticated attacker to execute arbitrary code. Description Samba is a widely used open-source implementation of Server Message Block SMB/Common Internet File...

Samba buffer overflow

Buffer overflow in sendmailslot on parsing domain logon request...

Samba Send_MailSlot函数远程栈溢出漏洞

BUGTRAQ ID: 26791 CVECAN ID: CVE-2007-6015 Samba是一套实现SMB（Server Messages Block）协议、跨平台进行文件共享和打印共享服务的程序。 Samba的sendmailslot函数中存在安全漏洞，远程攻击者可能利用此漏洞控制服务器。 如果远程攻击者所发送的特制SAMLOGON域登录报文中在奇数偏移包含有用户名字符串，然后跟随有超长GETDC字符串的话，就可能用全0的字节覆盖栈缓冲区。成功攻击允许执行任意代码，但要求打开了domain logons选项。 Samba 3.0.0 - 3.0.27a 临时解决方法：...

Samba < 3.0.28 'send_mailslot' Function Buffer Overflow

Binary data 4311.prm...

Samba < 3.0.28 send_mailslot Function Remote Buffer Overflow

According to its banner, the version of the Samba server on the remote host is reportedly affected by a boundary error in 'nmbd' within the 'sendmailslot' function. Provided the 'domain logons' option is enabled in 'smb.conf', an attacker can leverage this issue to produce a stack-based buffer...