SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (File Transfer/Sharing)  >   Samba Vendors:   Samba.org
(Ubuntu Issues Fix) Samba LDAP Memory Consumption Flaw Lets Remote Users Cause the Target System to Crash
SecurityTracker Alert ID:  1034589
SecurityTracker URL:  http://securitytracker.com/id/1034589
CVE Reference:   CVE-2015-7540   (Links to External Site)
Date:  Jan 5 2016
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 4.0.0 to 4.1.21
Description:   A vulnerability was reported in Samba. A remote user can cause the target system to crash.

A remote user can send specially crafted packets to consume excessive memory on the target LDAP server and cause the target server to crash.

The vulnerability was detected via Codenomicon Defensics.

Impact:   A remote user can cause the target system to crash.
Solution:   Ubuntu has issued a fix.

The Ubuntu advisory is available at:

http://www.ubuntu.com/usn/usn-2855-1

Vendor URL:  www.ubuntu.com/usn/usn-2855-1 (Links to External Site)
Cause:   Resource error
Underlying OS:  Linux (Ubuntu)
Underlying OS Comments:  12.04 LTS, 14.04 LTS, 15.04, 15.10

Message History:   This archive entry is a follow-up to the message listed below.
Dec 18 2015 Samba LDAP Memory Consumption Flaw Lets Remote Users Cause the Target System to Crash



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC