\u597d\u53ef\u6015\uff0c\u53c8\u4f86\u4e00\u500b\u539f\u5b50\u5f48\u7d1a\u7684\u6f0f\u6d1e\u4e86\uff01<\/p>\n
[SAMBA] CAN-2004-1154 : Integer overflow could lead to remote code execution in Samba 2.x, 3.0.x < = 3.0.9\n\n<\/p>\n
Remote exploitation of an integer overflow vulnerability
\nin the smbd daemon included in Samba 2.0.x, Samba 2.2.x,
\nand Samba 3.0.x prior to and including 3.0.9 could
\nallow an attacker to cause controllable heap corruption,
\nleading to execution of arbitrary commands with root
\nprivileges.<\/p>\n
Successful remote exploitation allows an attacker to
\ngain root privileges on a vulnerable system. In order
\nto exploit this vulnerability an attacker must possess
\ncredentials that allow access to a share on the Samba server.
\nUnsuccessful exploitation attempts will cause the process
\nserving the request to crash with signal 11, and may leave
\nevidence of an attack in logs.<\/p>\n
==================
\nPatch Availability
\n==================<\/p>\n
A patch for Samba 3.0.9 (samba-3.0.9-CAN-2004-1154.patch)
\ncan be downloaded from<\/p>\n
http:\/\/www.samba.org\/samba\/ftp\/patches\/security\/<\/p>\n
The patch has been signed with the “Samba Distribution
\nVerification Key” (ID F17F9772).<\/p>\n