Connect with us

Hi, what are you looking for?

Hard News Hard Hitting News Source Global Political News

Cyber Security

Critical Samba flaw presents code execution threat

A newly discovered critical vulnerability in Samba could allow remote attackers to execute arbitrary code as root on affected installations.

All versions of Samba prior to version 4.13.17 are vulnerable to the heap overflow memory handling vulnerability – providing they are running the flawed VFS module vfs_fruit.

Samba is a widely used free software implementation of the SMB networking protocol. The vulnerability (CVE-2021-44142), discovered by noted web security researcher Orange Tsai, scores a near-maximum CVSS score of 9.9.

Successful exploitation of the flaw would allow hackers to read or write arbitrary data from memory without needing to secure any administrative privileges on targeted systems.

Samba administrators are advised to upgrade to the latest releases (4.13.17, 4.14.12 and 4.15.5) or apply a patch as soon as possible. Mitigation short of patching would involve changing Samba configuration files so that the vulnerable vfs_fruit module doesn’t run.

“The specific flaw exists within the parsing of EA metadata when opening files in SMBD,” an advisory on the flaw from developers of Samba explains.

The ability to write access to file extended attributes is needed in order to attack the flaw, but such permissions are granted to guest or unauthenticated users.

The Daily Swig invited researcher Orange Tsai to comment on how they had discovered the vulnerability as well as what real world impact it might have. No word back yet, but we’ll update this story as and when more information comes to hand

Source: https://portswigger.net/daily-swig/critical-samba-flaw-presents-code-execution-threat

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

You May Also Like

Cyber Security

Zero Trust Data Access (ZTDA) constitutes a fundamental aspect of the wider Zero Trust security framework, which entails limiting data access. The Zero Trust security approach...

Cyber Security

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given federal agencies three weeks to secure Adobe ColdFusion servers on their networks against two...

Cyber Security

Businesses and developers are focusing more on the security of applications in their digital environment as cyber threats and data breaches continue escalating. The...

Cyber Security

HCL BigFix is an endpoint management platform that has the capability to automate discovery, management, and remediation. It can find and fix vulnerabilities on...

Copyright © 2023 Hard News Herd Hitting in Your Face News Source | World News | Breaking News | US News | Political News Website by Top Search SEO