Intrusion Prevention

Linux.Kernel.SMB.Filesystem.smb_receive_Transaction2.DoS

Description

This indicates an attack attempt against a Denial of Service vulnerability in the Linux Kernel.
The vulnerability is caused by insufficient boundary validation when defragmenting an SMB "Transaction2" response. If an attacker is able to control a Samba server or to intercept and modify the SMB traffic, they can attempt to exploit this vulnerability to cause a Denial of Service condition.

Affected Products

Linux Kernel Project Linux Kernel 2.4.0 - 2.4.27

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
http://kernel.org/pub/linux/kernel

CVE References

CVE-2004-0949