SMB: Samba SMB1 smb_request_done Use After Free

A use after free vulnerability has been reported in the SMB1 component of Samba. A remote, authenticated attacker could exploit this vulnerability by sending maliciously crafted SMB1 commands to the target server. Successful exploitation could result in arbitrary code execution in the security context of the Samba service.

Extended Description

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request.

Affected Products

Samba samba

References

BugTraq: 101907

CVE: CVE-2017-14746

Short Name
SMB:SAMBA:USE-AFTER-FREE-CE
Severity
Major
Recommended
True
Recommended Action
Drop
Category
SMB
Keywords
After CVE-2017-14746 Free SMB1 Samba Use bid:101907 smb_request_done
Release Date
12/12/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Samba

Debian

Redhat

Canonical

CVSS Score

7.5

Found a potential security threat?