Samba.SID.Parsing.Stack.Buffer.Overflow
Description
This indicates an attack attempt against a buffer-overflow vulnerability in Samba.
The vulnerability is due to a boundary error when parsing the Security ID (SID) in SMB packets. Remote attackers could exploit this vulnerability by sending a crafted SMB message to a target SMB server.
Affected Products
Samba 3.5.4 and previous versions
Impact
System compromise: Remote attackers can gain control of vulnerable systems.
Denial of service
Recommended Actions
Update to version 3.5.5:
http://us1.samba.org/samba/history/samba-3.5.5.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |