The Register® — Biting the hand that feeds IT

Feeds

Samba vuln – get your patches on

Or be rooted

  • print
  • alert

Cloud based data management

A buffer overflow has been found in Samba that requires immediate action, the team's Jeremy Allison tells us.

Samba is the most-widely used software that allows access Windows networks from non-Windows clients. If you're running a Samba server version 2.0 or higher, you urgently need to install the latest version 2.2.8, or block access to TCP ports 139 and 445. Code that exploits the hole - which gives a potential attacker root privileges has already been created by the black hat Community.

Version 2.2.8 source can be found here, and binaries here.

You can find more information in this posting. ®

Regcast training : Hyper-V 3.0, VM high availability and disaster recovery

More from The Register

 breaking news
Number of cops abusing Police National Computer access on the rise
Only a telegram from the Queen can get you off it
 breaking news
NSA PRISM snoop-gate: Won't someone think of the children, wails Apple
10,000 things probed, mostly about missing kids, Alzheimer patients, we're told
Flash flaw potentially makes every webcam or laptop a PEEPHOLE
But it's a Google problem - Chrome only, insists Adobe
Internet fraud still stings suckers
Australians twice as gullible as Americans
 breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
 breaking news
Yahoo! joins! rivals! in! PRISM! data! request! admission!
Keep calm and carry on using American tech firms, folks
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
EU Justice Department stalls India's security clearance
Without a 'data secure destination' cert India's locked out of $30bn euro-sourcing market