Linux Kernel Vulnerability


Recommended Posts

9 April 2009, 10:48

Linux Kernel Vulnerability

A vulnerability in the CIFS client in the Linux Kernel code makes it possible for a manipulated SMB server to cause users systems to crash or be compromised. The problem is caused by a buffer in the CIFSTCon function in fs/cifs/connect.c file being too small. This function is used when the server responds to a connection request for a resource, known as a Tree Connect. Overflowing the undersized buffer could allow code to be injected and executed. The bug only comes into play if the users system attempts to mount a resource on a manipulated server.

The Linux developers have already attempted to fix the problem in kernel version 2.6.29.1, by simply doubling the length of the buffer. However, they do not explicitly indicate that this problem is potentially exploitable over a network. In a blog posting (in German), the security specialist Felix von Leitner said he suspected this was a remotely exploitable CIFS issue which had been fixed in 2.6.29.1, but not mentioned in the release announcement.

Details at Heise security - http://www.h-online.com/security/Linux-Ker...y--/news/113039

>>>>>>>>>>>>

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...