Strike ID:
E07-7n301
CVSS:
9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)
False Positive:
t
Variants:
1
Year:
2007

Description

This strike exploits a vulnerability in the Samba Domain Controller service. When handling SAM LOGON requests. The formula Len*2+51 is used with Len as the length of Mailslot Name in the SAM LOGON request. If this length is greater than 262 bytes, the data will overwrite critical memory in the buffer.

CVE

References

MSB

BID

ExploitDB

Secunia

Security Tracker

Metasploit

ZDI

Google

OSVDB

{}