[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Vulnerability in Samba 2.2.10 and older

Subject: Re: Vulnerability in Samba 2.2.10 and older
From: Takahiro Kambe <taca@back-street.net>
To: tron@NetBSD.org
Date: Tue, 31 Aug 2004 20:44:59 +0900 (JST)
Message-Id: <20040831.204459.32627944.taca@back-street.net>
In-Reply-To: <20040830163011.GB24991@colwyn.zhadum.de>
References: <20040830133314.GB845@colwyn.zhadum.de><20040830.234848.84977771.taca@back-street.net><20040830163011.GB24991@colwyn.zhadum.de>
Cc: tech-pkg-ja@jp.NetBSD.org, kim@NetBSD.org
Delivered-To: mailing list tech-pkg-ja@jp.netbsd.org
Mailing-List: contact tech-pkg-ja-help@jp.netbsd.org; run by ezmlm-idx

In message <20040830163011.GB24991@colwyn.zhadum.de>
	on Mon, 30 Aug 2004 18:30:11 +0200,
	Matthias Scheler <tron@NetBSD.org> wrote:
> On Mon, Aug 30, 2004 at 11:48:48PM +0900, Takahiro Kambe wrote:
> > > Yes, definitely. Even if only a forked "smbd" crashes there must have
> > > been a buffer overflow which can be abused to execute something on
> > > the samba server.
> > Then it is denial-of-service?
> 
> Probably not. I wasn't sure, and DoS seems like the minimum impact.
remote-server-crash ?

-- 
Takahiro Kambe <taca@back-street.net>

Follow-Ups:
- Re: Vulnerability in Samba 2.2.10 and older
  - From: Matthias Scheler <tron@NetBSD.org>

References:
- Re: Vulnerability in Samba 2.2.10 and older
  - From: Matthias Scheler <tron@NetBSD.org>
- Re: Vulnerability in Samba 2.2.10 and older
  - From: Takahiro Kambe <taca@back-street.net>
- Re: Vulnerability in Samba 2.2.10 and older
  - From: Matthias Scheler <tron@NetBSD.org>

Prev by Date: Re: Vulnerability in Samba 2.2.10 and older
Next by Date: Re: Vulnerability in Samba 2.2.10 and older
Prev by thread: Re: Vulnerability in Samba 2.2.10 and older
Next by thread: Re: Vulnerability in Samba 2.2.10 and older
Index(es):
- Date
- Thread