Kuwait Linux User Group

Samba 3.0 DoS Vulnerabilities.
Date: Thursday, September 16, 2004 @ 20:03:09 EDT

The following Denial of Service Flaw was reported in Samba 3.0 versions prior to and including v3.0.6:

(i) A DoS bug in smbd may allow an unauthenticated user to cause smbd to spawn new processes each one entering an infinite 

loop. After sending a sufficient amount of packets it is possible to exhaust the memory resources on the server. 
(ii) A DoS bug in nmbd may allow an attacker to remotely crash the nmbd daemon. 

complete story

This article comes from Kuwait Linux User Group

The URL for this story is: