Intrusion Prevention

Samba.NTTrans.Fragment.Buffer.Overflow

Description

This indicates a possible attempt to exploit a buffer-overflow vulnerability in Samba server.
This is due to an error in the vulnerable software when reassembling SMB/CIFS packets. A remote attacker may exploit this to execute arbitrary code by sending crafted SMB/CIFS packets.

Affected Products

Samba 2.2.7a and earlier versions.

Impact

System compromise

Recommended Actions

Upgrade to Samba 2.2.8 or later.

CVE References

CVE-2003-0085

Other References

1