Please don't let this go as is, hope is stil time:
(14th Mar, 2003) Security Release - Samba 2.2.8
A flaw has been detected in the Samba main smbd code which could allow
an external attacker to remotely and anonymously gain Super User (root)
privileges on a server running a Samba server. This flaw exists in
previous versions of Samba from 2.0.x to 2.2.7a inclusive. This is a
serious problem and all sites should either upgrade to Samba 2.2.8
immediately or prohibit access to TCP ports 139 and 445. The Release
Notes are available on-line.
In addition to addressing this security issue, Samba 2.2.8 includes many
unrelated improvements. These improvements result from our process of
continuous quality assurance and code review, and are part of the Samba
team's committment to excellence.
Mircea C.
- Re: [Cooker] STOP THE PRESS: samba critical remote root vul... Mircea Ciocan
- Re: [Cooker] STOP THE PRESS: samba critical remote roo... Brook Humphrey
- Re: [Cooker] STOP THE PRESS: samba critical remote... Quel Qun
- Re: [Cooker] STOP THE PRESS: samba critical re... Vincent Danen
- [Cooker] Re: STOP THE PRESS: samba critica... David Walser
- Re: [Cooker] STOP THE PRESS: samba critica... Quel Qun
- Re: [Cooker] STOP THE PRESS: samba critica... Buchan Milne
