Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Samba结构不正确终止导致远程缓冲区溢出漏洞
Vulnerability Description
Samba是一套实现SMB(Server Messages Block)协议,跨平台进行文件共享和打印共享服务的程序。 Samba不正确的使用了函数结构,远程攻击者可以利用这个漏洞进行缓冲区溢出攻击。 由于Samba的"enum_csc_policy"结构没有正确的终止,可能导致远程攻击者破坏这个结构而覆盖内存地址,可能以Samba进程的权限在系统中执行任意指令。不过没有得到证实。 "csc policy"包含在"enum_map_to_guest"结构表目中。
CVSS Information
N/A
Vulnerability Type
N/A