[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[linux-security] ALERT: remote root exploit in samba server
- To: linux-security
- Subject: [linux-security] ALERT: remote root exploit in samba server
- From: Martin Siegert <siegert@sfu.ca>
- Date: Tue, 8 Apr 2003 16:04:05 -0700
- User-Agent: Mutt/1.4.1i
Topic
=====
ALERT: remote root expoit in samba server
An exploit for this vulnerability is publicly available.
Problem Description
===================
A buffer overflow exists in the samba file server, the widely spread
implementation of the SMB protocol. The flaw allows a remote attacker to
execute arbitrary commands as root on a server that runs a vulnerable
version of samba. The vulnerability is known as DDI trans2.c overflow bug.
An exploit for this vulnerability is publicly available and immediate
action is therefore required.
Affected Versions
=================
all versions of samba prior to 2.2.8a
Solution
========
upgrade to version 2.2.8a (or patched version for your distribution)
RedHat 7.1
----------
new packages not yet available
RedHat 7.2
----------
rpm -Fvh samba-2.2.7-3.7.2.i386.rpm \
samba-common-2.2.7-3.7.2.i386.rpm \
samba-client-2.2.7-3.7.2.i386.rpm \
samba-swat-2.2.7-3.7.2.i386.rpm
RedHat 7.3
----------
rpm -Fvh samba-2.2.7-3.7.3.i386.rpm \
samba-common-2.2.7-3.7.3.i386.rpm \
samba-client-2.2.7-3.7.3.i386.rpm \
samba-swat-2.2.7-3.7.3.i386.rpm
RedHat 8.0
----------
rpm -Fvh samba-2.2.7-5.8.0.i386.rpm \
samba-common-2.2.7-5.8.0.i386.rpm \
samba-client-2.2.7-5.8.0.i386.rpm \
samba-swat-2.2.7-5.8.0.i386.rpm
RedHat 9
--------
rpm -Fvh samba-2.2.7a-8.9.0.i386.rpm \
samba-common-2.2.7a-8.9.0.i386.rpm \
samba-client-2.2.7a-8.9.0.i386.rpm \
samba-swat-2.2.7a-8.9.0.i386.rpm
SuSE-7.1
--------
rpm -Fvh samba-2.0.10-32.i386.rpm \
smbclnt-2.0.10-32.i386.rpm
SuSE-7.2
--------
rpm -Fvh samba-2.2.0a-52.i386.rpm \
smbclnt-2.2.0a-52.i386.rpm
SuSE-7.3
--------
rpm -Fvh samba-2.2.1a-220.i386.rpm \
samba-client-2.2.1a-220.i386.rpm
SuSE-8.0
--------
rpm -Fvh samba-2.2.3a-172.i386.rpm \
samba-client-2.2.3a-172.i386.rpm
SuSE-8.1
--------
rpm -Fvh samba-2.2.5-178.i586.rpm \
samba-client-2.2.5-178.i586.rpm
SuSE-8.2
--------
rpm -Fvh samba-2.2.7a-72.i586.rpm \
samba-client-2.2.7a-72.i586.rpm
Mandrake 8.2
------------
rpm -Fvh nss_wins-2.2.7a-9.2mdk.i586.rpm \
samba-client-2.2.7a-9.2mdk.i586.rpm \
samba-common-2.2.7a-9.2mdk.i586.rpm \
samba-doc-2.2.7a-9.2mdk.i586.rpm \
samba-server-2.2.7a-9.2mdk.i586.rpm \
samba-swat-2.2.7a-9.2mdk.i586.rpm \
samba-winbind-2.2.7a-9.2mdk.i586.rpm
Mandrake 9.0
------------
rpm -Fvh nss_wins-2.2.7a-9.2mdk.i586.rpm \
samba-client-2.2.7a-9.2mdk.i586.rpm \
samba-common-2.2.7a-9.2mdk.i586.rpm \
samba-doc-2.2.7a-9.2mdk.i586.rpm \
samba-server-2.2.7a-9.2mdk.i586.rpm \
samba-swat-2.2.7a-9.2mdk.i586.rpm \
samba-winbind-2.2.7a-9.2mdk.i586.rpm
Mandrake 9.1
------------
rpm -Fvh nss_wins-2.2.7a-9.2mdk.i586.rpm \
samba-client-2.2.7a-9.2mdk.i586.rpm \
samba-common-2.2.7a-9.2mdk.i586.rpm \
samba-doc-2.2.7a-9.2mdk.i586.rpm \
samba-server-2.2.7a-9.2mdk.i586.rpm \
samba-swat-2.2.7a-9.2mdk.i586.rpm \
samba-winbind-2.2.7a-9.2mdk.i586.rpm
Debian 2.2 (potato)
-------------------
upgrade to samba_2.0.7-5.1_i386.deb,
samba-common_2.0.7-5.1_i386.deb,
smbclient_2.0.7-5.1_i386.deb,
smbfs_2.0.7-5.1_i386.deb,
swat_2.0.7-5.1_i386.deb
Debian 3.0 (woody)
------------------
upgrade to samba_2.2.3a-12.3_i386.deb,
samba-common_2.2.3a-12.3_i386.deb,
smbclient_2.2.3a-12.3_i386.deb,
smbfs_2.2.3a-12.3_i386.deb,
libpam-smbpass_2.2.3a-12.3_i386.deb,
libsmbclient_2.2.3a-12.3_i386.deb,
libsmbclient-dev_2.2.3a-12.3_i386.deb,
swat_2.2.3a-12.3_i386.deb,
winbind_2.2.3a-12.3_i386.deb