Information Technology Services: Alerts Archive

ALARM Group ALERTclick for a description of ALARM, The Computing Alert System
Alert Number:  091304-01
Alert Date:  09/13/04
Alert Title:  Samba vulnerabilities to DOS attack
Update-to:  None
OS/Platform/Application:  OS/Platform/Application: net-fs/samba (< 3.0.7) on all supported architectures
Category:  ALERT
Severity:  NONE
Attention:  UNIX/LINUX System Administrators

Summary:  Two conditions have been identified in which an attacker can ignite a Denial Of Service condition on machines running Samba 3.X. The vulnerabilities relate to defects in Samba's smbd and nmbd processes.

Recommended Actions:  The latest version of Samba addresses these vulnerabilities. Please read the information presented in the URL (below) for more detail.

ITS Actions:  ITS is taking no specific additional actions to counter this threat. An update will be issued if this situation changes.

Resources:
http://www.gentoo.org/security/en/glsa/glsa-200409-16.xml

NOTE:  PLEASE DO NOT REPLY TO THIS ALERT.  Alerts distributed by ALARM are not intended to supplant whatever security measures you are currently following. Technology coordinators, as well as the entire Ualbany computing community should continue to take all necessary precautions against threats to system security and information integrity.

Current Students  |  New Students  |  Distance Learners  |  Faculty  |  New Faculty  |  Staff
Training  |  Schedules / Hours  |  Forms  |  FAQs & User Guides  |  Policies  |  About ITS  |  Home

University at Albany homepage