From owner-freebsd-security Wed Mar 19 8: 6:59 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 44B1D37B405 for ; Wed, 19 Mar 2003 08:06:57 -0800 (PST) Received: from supermarine.crossflight.co.uk (supermarine.crossflight.co.uk [195.172.72.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4079F43F3F for ; Wed, 19 Mar 2003 08:06:55 -0800 (PST) (envelope-from guy@crossflight.co.uk) Received: from mailscan1.crossflight.co.uk (mailscan1.crossflight.co.uk [195.172.72.202]) by supermarine.crossflight.co.uk (8.12.8/8.10.1) with ESMTP id h2JG6ruO002141 for ; Wed, 19 Mar 2003 16:06:53 GMT Received: from crossflight.co.uk (unverified) by mailscan1.crossflight.co.uk (Content Technologies SMTPRS 4.3.1) with ESMTP id ; Wed, 19 Mar 2003 16:06:53 +0000 Message-ID: <3E78959C.3040204@crossflight.co.uk> Date: Wed, 19 Mar 2003 16:06:52 +0000 From: Guy Dawson User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3b) Gecko/20030210 X-Accept-Language: en-us, en MIME-Version: 1.0 Cc: security@freebsd.org Subject: Re: Samba vulnerability References: <20030318143759.GA77729@nevermind.kiev.ua> <3E774C85.902@drweb.ru> <20030319061826.GA4238@cirb503493.alcatel.com.au> In-Reply-To: <20030319061826.GA4238@cirb503493.alcatel.com.au> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Peter Jeremy wrote: > On Tue, Mar 18, 2003 at 07:42:45PM +0300, Nikolaj I. Potanin wrote: > >>>A flaw has been detected in the Samba main smbd code which could allow >>>an external attacker to remotely and anonymously gain Super User (root) >> >> ^^^^^^^^^^^^^^^^^ >> >>Does anyone here have smbd bound to an external interface? ;-) > > > I read this as "external to the Samba server" - which covers everyone > who installs Samba in a usable system. Me too! In otherwords the attacker does not need an account on the server they are attacking. Guy -- -------------------------------------------------------------------- Guy Dawson I.T. Manager Crossflight Ltd guy@crossflight.co.uk 07973 797819 01753 776104 ********************************************************************** This email contains the views and opinions of a Crossflight Limited employee and at this stage are in no way a direct representation of Crossflight Limited. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. To ensure the integrity and appropriate use of its email system, Crossflight Limited reserves the right to examine any email held on its email system or sent to or from it. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. We strongly recomend that you check this email with your own virus software as Crossflight Limited will not be held responsible for any damage caused by viruses as a result of opening this email. ********************************************************************** To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message