Re: CVS update: samba/source/rpc_parse

[Jean Francois Micouleau]

On Wed, 25 Sep 2002 [EMAIL PROTECTED] wrote:

> Log Message:
> A PRINTER_INFO_2 doesn't necessarily contain a security descriptor.
> For example, Windows NT/2K doesn't return a secdesc for a enumprinters
> level2 but Samba currently does.  Fix by checking the offset is
> non-zero before trying to unmarshall a security descriptor.

uh ? you can do a enumprinters anonymously so samba is leaking security
informations to anon users ! This time samba is worse than the other
software it's communicating with ;-)

        J.F.