Contact:
Newsfox Desk
Phone: + 43 - 1 - 811 40 - 319
E-Mail: editor@newsfox.com
| Pressbox | 
|
Nurnberg (pte022/17.03.2003/12:13) - The Samba Project http://de.samba.org has reported a security gap in its free server. The leak permits external attackers to gain anonymous administrator rights to a Samba server.
The Samba team has called the problem very serious and recommends that all users upgrade to the 2.2.8 version. The security gap affects all versions from 2.0 to 2.2.7 http://de.samba.org/samba/whatsnew/samba-2.2.8.html .
According to Samba, the leak was discovered by Sebastian Kramer of the SuSE Security audit team. The gap is caused by buffer overflow in the code fragment that puts package fragments back together. An experienced hacker could use the opening to carry out his programs on the server.
The new version of the Samba Project will also contain other improvements.
(end)
|
|
