The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory by uploading a crafted DNS TXT record.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2016-03-13 15:59
Updated : 2016-12-02 19:18
NVD link : CVE-2016-0771
Mitre link : CVE-2016-0771
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
samba
- samba