Sponsored By

Sign in to follow this  
Peaches

Linux Kernel Vulnerability

Recommended Posts

9 April 2009, 10:48

Linux Kernel Vulnerability

A vulnerability in the CIFS client in the Linux Kernel code makes it possible for a manipulated SMB server to cause users systems to crash or be compromised. The problem is caused by a buffer in the CIFSTCon function in fs/cifs/connect.c file being too small. This function is used when the server responds to a connection request for a resource, known as a Tree Connect. Overflowing the undersized buffer could allow code to be injected and executed. The bug only comes into play if the users system attempts to mount a resource on a manipulated server.

The Linux developers have already attempted to fix the problem in kernel version 2.6.29.1, by simply doubling the length of the buffer. However, they do not explicitly indicate that this problem is potentially exploitable over a network. In a blog posting (in German), the security specialist Felix von Leitner said he suspected this was a remotely exploitable CIFS issue which had been fixed in 2.6.29.1, but not mentioned in the release announcement.

Details at Heise security - http://www.h-online.com/security/Linux-Ker...y--/news/113039

>>>>>>>>>>>>

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this