Tag: samba

Samba Releases update for Out-Of-Bounds Heap Read/Write Vulnerability (CVE-2021-44142)

Posted by Author Diksha Ojha on Posted on

Samba is a reimplementation of the SMB network protocol that provides file sharing and printing services across many platforms, allowing Linux, Windows, and macOS users to share files over the network.    The vulnerability tracked as CVE-2021-44142, is an out-of-bounds heap read-write vulnerability that allows remote attackers to execute arbitrary code as root on affected Samba … Continue reading “Samba Releases update for Out-Of-Bounds Heap Read/Write Vulnerability (CVE-2021-44142)”

Orpheus’ Lyre Vulnerability

Posted by Author Deepak Shanker on Posted on

The Orpheus’ lyre is a critical vulnerability in the implementation of the Kerberos protocol. The name has its roots in the Greek mythology where Orpheus plays his lyre to put Cerberus to sleep. Cerberus is the three headed dog the guards the entrance to the Underworld. Kerberos is named after Cerberus. Kerberos is heavily used by MS … Continue reading “Orpheus’ Lyre Vulnerability”

Samba Writable Share Remote Code Execution (CVE-2017-7494)

Posted by Author Ses Wang on Posted on

A critical remote code execution vulnerability impacting Samba was issued on Wednesday. The vulnerability exists in “SMB” protocol which is similar to “WannaCry”. All versions of Samba from 3.5.0 onwards are affected. The vulnerability allows a malicious client to upload a shared library to a writable share, and then cause the server to load and … Continue reading “Samba Writable Share Remote Code Execution (CVE-2017-7494)”