CVE-2012-0870 samba: Any Batched ("AndX") request processing infinite recursion and heap-based buffer overflow

Solution Verified - Updated -

Issue

  • Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion.

Environment

  • Red Hat Enterprise Linux v 4
  • Red Hat Enterprise Linux v 5
  • Samba3x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In