Samba.smbd.Netlogon.Packet.Handling.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Memory Corruption vulnerability in Samba.
The vulnerability is due to an error in creds operation when affected software handles a maliciously crafted packet. A remote attacker may be able to exploit this to execute arbitrary code on the affected machine. Also, a remote attacker can exploit this to cause a denial of service condition on the affected server.

affected-products-logoAffected Products

Samba 3.5.0 to 4.2.0rc4

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor
https://www.samba.org/samba/security/CVE-2015-0240

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)