Check or Attack Name: Samba Overflow

The samba NetBIOS service up to 1.9.17p2 contained a buffer overflow vulnerability. A remote attacker can submit a specially-formatted password that exceeds the length expected by Samba and cause the server to execute arbitrary code with root privileges.

This problem was fixed in 1.9.17p3 and later releases. Users should always install the latest version available..

CIAC Information Bulletin H-110, Samba Servers Vulnerability, http://ciac.llnl.gov/ciac/bulletins/h-110.shtml

Samba Project, SAMBA Web Pages, http://www.samba.org/

CERT Vendor-Initiated Bulletin VB-97.10, Security bugfix for Samba, http://www.cert.org/ftp/cert_bulletins/VB-97.10.samba