[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[ossig] RE: [slugnet] Warning !!! Security Hole in Samba server
Samba2.2.8 comes with Red Hat 9.0, so I didn't apply
any patches, which was my mistake :-(
see below:
===============================================
[*] samba-2.2.8 < remote root exploit
------------------------------------------------------------------------------
sambal.c is a remote root exploit for samba 2.2.x
and prior that works against
Linux (all distros), FreeBSD (4.x, 5.x), NetBSD
(1.x) and OpenBSD (2.x, 3.x
and 3.2-non exec stack). It has a scan option, so
you can easily identify your
lost samba boxes on your home WAN...
It began with the creation of the great buffer.
Four bytes were written to it to mark the
beginning of it.
Seven bytes were written to store all information.
And nine, nine bytes were written to the end to
assure a long enough buffer.
For within this buffer, it could harbor all
required user input.
But they were all deceived, for another byte was
written.
Inside the Memory, in the heart of the stack. The
user input was long enough
to write a master byte. To control the entire
buffer, and into this byte, the user
poured his cruelty, his malice and his will to
dominate it all!
One byte to rule them all....
====================================================
--- Greg Hosler <hosler@lugs.org.sg> wrote: > are you
saying that the latest eratta has an
> exploit, or are you saying that
> you didn't apply the eratta, and someone hacked you
> ?
>
> On 30-Apr-2003 Vincent Lee wrote:
> > Hi Guys,
> >
> > Just a warning, one of my servers has been hacked
> by a
> > joker who exploited the latest samba server
> > vulnerability (which was released on Apr 10th).
> The
> > fella promoted himself as the root user, and was
> > running psyBNC and irc server .......
> >
> > Just an alert to all.. good luck !!!
> >
> > Best regards,
> > Vincent
> >
> > =====
> > ---------------------------------------------
> > http://vlee.net/ mailto:vlee@vlee.net
> > ---------------------------------------------
> >
> > __________________________________________________
> > Yahoo! Plus
> > For a better Internet experience
> > http://www.yahoo.co.uk/btoffer
> >
> >
>
---------------------------------------------------------------------
> > To unsubscribe, e-mail:
> slugnet-unsubscribe@lists.lugs.org.sg
> > For additional commands, e-mail:
> slugnet-help@lists.lugs.org.sg
>
>
+---------------------------------------------------------------------+
> You can release software that's good, software
> that's inexpensive, or
> software that's available on time. You can
> usually release software
> that has 2 of these 3 attributes -- but not all
> 3.
> | Greg Hosler
> hosler@lugs.org.sg |
>
+---------------------------------------------------------------------+
>
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
> slugnet-unsubscribe@lists.lugs.org.sg
> For additional commands, e-mail:
> slugnet-help@lists.lugs.org.sg
>
=====
---------------------------------------------
http://vlee.net/ mailto:vlee@vlee.net
---------------------------------------------
__________________________________________________
Yahoo! Plus
For a better Internet experience
http://www.yahoo.co.uk/btoffer
------------------------------------------------------------
To unsubscribe: send mail to ossig-request@mncc.com.my
with "unsubscribe ossig" in the body of the message