漏洞描述
Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。
Samba 4.0.0 - 4.1.10版本在nmbd NetBIOS名称服务的实现上存在远程代码执行漏洞,恶意浏览器可发送数据包覆盖目标名称服务程序的堆,然后以超级用户权限执行任意代码。
<*来源:Volker Lendecke
链接:http://www.samba.org/samba/security/CVE-2014-3560
*>
解决方法
以下是各Linux/Unix发行版系统针对此漏洞发布的安全公告,可以参考对应系统的安全公告修复该漏洞:
Ubuntu
----------------
USN-2305-1: [USN-2305-1] Samba vulnerability
链接: https://www.ubuntu.com/usn/usn-2305-1
Red Hat Enterprise Linux
----------------
链接: https://access.redhat.com/security/cve/CVE-2014-3560
CentOS
----------------
CESA-2014:1009: CESA-2014:1009 Important CentOS 6 samba4 Update
链接: https://lists.centos.org/pipermail/centos-announce/2014-August/020465.html
CESA-2014:1008: CESA-2014:1008 Important CentOS 6 samba Security Update
链接: https://lists.centos.org/pipermail/centos-announce/2014-August/020466.html
CESA-2014:1008: CESA-2014:1008 Important CentOS 7 samba Security Update
链接: https://lists.centos.org/pipermail/centos-announce/2014-August/020467.html
FreeBSD
----------------
89ff45e3-1a57-11e4-bebd-000c2980a9f3: samba -- remote code execution
链接: http://vuxml.freebsd.org/freebsd/89ff45e3-1a57-11e4-bebd-000c2980a9f3.html
Slackware
----------------
SSA:2014-213-01: [slackware-security] samba (SSA:2014-213-01)
链接: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.365215
openSUSE
----------------
openSUSE-SU-2014:1040-1: openSUSE Security Update: samba
链接: https://lists.opensuse.org/opensuse-updates/2014-08/msg00027.html
Fedora
----------------
FEDORA-2014-9141: Fedora 20 Update: samba-4.1.9-4.fc20
链接: https://lists.fedoraproject.org/pipermail/package-announce/2014-August/136280.html
FEDORA-2014-9132: Fedora 19 Update: samba-4.0.21-1.fc19
链接: https://lists.fedoraproject.org/pipermail/package-announce/2014-August/136864.html
Oracle Linux
----------------
链接: https://linux.oracle.com/cve/CVE-2014-3560.html