A critical flaw in recent versions of the open source file sharing component Samba could allow attacks.
According to Arstechnica, the flaw could put users on the receiving end of attacks that allow hackers on the same local network to run programs with nearly unfettered administrative privileges. The newly discovered bug can be exploited by sending specially manipulated traffic to a vulnerable system.
The remote code execution vulnerability resides in Samba’s nmbd NetBIOS name service daemon and is the result of the daemon incorrectly handling certain memory operations. The bug was found and fixed by Volker Lendecke, a Samba Team member working for SerNet.
The post advises users to apply a recently released patch as soon as possible. (Recent Samba versions 4.1.11 and 4.0.21 already have the patch applied.) Those who are unable to update immediately should stop running nmbd.
