RCE in Samba

CVE-2014-3560

NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variab…

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.719 (98.8th percentile) — read the EPSS interpretation.

Affected products

Samba — versions 4.1.0, 4.1.1, 4.1.2
Canonical Ubuntu_linux — versions 14.04
Redhat Enterprise_linux — versions 6.0, 7.0
N/a — versions n/a

Weakness classification (CWE)

CWE-94 — Code Injection

References

secalert@redhat.com (x_refsource_CONFIRM)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
FEDORA-2014-9141 (x_refsource_FEDORA, vendor-advisory)
FEDORA-2014-9132 (x_refsource_FEDORA, vendor-advisory)
secalert@redhat.com (x_refsource_CONFIRM)
1030663 (vdb-entry, x_refsource_SECTRACK)
59583 (x_refsource_SECUNIA, third-party-advisory)
69021 (vdb-entry, x_refsource_BID)
USN-2305-1 (x_refsource_UBUNTU, vendor-advisory)
openSUSE-SU-2014:1040 (vendor-advisory, x_refsource_SUSE)