Samba vulnerability

2012-05-01T00:00:00
ID USN-1434-1
Type ubuntu
Reporter Ubuntu
Modified 2012-05-01T00:00:00

Description

Ivano Cristofolini discovered that Samba incorrectly handled some Local Security Authority (LSA) remote procedure calls (RPC). A remote, authenticated attacker could exploit this to grant administrative privileges to arbitrary users. The administrative privileges could be used to bypass permission checks performed by the Samba server.