An information disclosure vulnerability exists in the SMB1 component of Samba. The vulnerability is due to the inclusion of uninitialized memory in certain responses. A remote, authenticated attacker could exploit this vulnerability by sending maliciously crafted SMB1 commands to the target server. Successful exploitation could result in the disclosure of memory from the target system.
from Check Point Update Services Advisories http://ift.tt/2DLnwgY
No comments:
Post a Comment