A buffer overflow has been found in Samba that requires immediate action, the team's Jeremy Allison tells us.

Samba is the most-widely used software that allows access Windows networks from non-Windows clients. If you're running a Samba server version 2.0 or higher, you urgently need to install the latest version 2.2.8, or block access to TCP ports 139 and 445. Code that exploits the hole - which gives a potential attacker root privileges has already been created by the black hat Community.

Version 2.2.8 source can be found here (http://download.samba.org/samba/ftp/), and binaries here (http://download.samba.org/samba/ftp/Binary_Packages/).

You can find more information in this posting (http://lists.samba.org/pipermail/samba-technical/2003-March/043140.html). ®