According various sources a buffer overflow found in Samba (the UNIX based translation server software for accessing windows file shares and printers.) could allow a remote attacker to remotely access a vulnerable Samba server. The problem discovered by Digital Defense, stems from an improperly handled buffer in the packet fragment re-assembly code.
Paul Roberts of Infoworld.com states that Digital Defense also released a private proof of concept script only intended to be used internally. The private scrip named “trans2root.pl”, was available approximately 12 hours.
Comments (0)
Topsight.net
http://www.topsight.net/article.php/20030408184458191