CVE-2015-0240

Name of the Vulnerable Software and Affected Versions Samba versions 3.5.x through 3.6.24 Samba versions 4.0.x through 4.0.24 Samba versions 4.1.x through 4.1.16 Samba versions 4.2.x through 4.2.0rc4

Description The issue is related to errors in the code of the Samba network interaction package, specifically in the netr ServerPasswordSet function. Exploitation of this issue may allow a remote attacker to execute arbitrary code with administrator privileges using a specially crafted remote procedure call to the ServerPasswordSet RPC API. The vulnerability exists due to the free operation on an uninitialized stack pointer in the Netlogon server implementation in smbd. This allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API.

Recommendations For Samba versions 3.5.x through 3.6.24, update to version 3.6.25 or later. For Samba versions 4.0.x through 4.0.24, update to version 4.0.25 or later. For Samba versions 4.1.x through 4.1.16, update to version 4.1.17 or later. For Samba versions 4.2.x through 4.2.0rc4, update to version 4.2.0rc5 or later.