Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: SAMBA "root" credential remote code execution. - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
SAMBA "root" credential remote code execution.

Samba - "a Windows SMB/CIFS fileserver for UNIX" seems to have a serious security vulnerability that samba versions 3.6.3 and all versions prior to it have a vulnerability that allows remote code execution as the "root" user from an anonymous connection.

Yep, time to upgrade SAMBA.

Hat tip: Charlie

Swa Frantzen -- Section 66


760 Posts
Apr 10th 2012
Does anyone know if there is exploit code, publicly available?

12 Posts
Yes. Exploit Code is publicly available for this vulnerability. Patch now.

81 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!