TTCSIRT-100.031418: TT-CSIRT Advisory – Samba Security Updates

TTCSIRT-100.031418: TT-CSIRT Advisory – Samba Security Updates

The Samba Team has released a security update stating that all versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spools service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spools RPC calls could cause the print spooler service to crash.

There is no known vulnerability associated with this error, merely a denial of service. If the RPC spools service is left by default as an internal service, all a client can do is crash its own authenticated connection.

Further information on this vulnerability and how it can be mitigated can be found on the Samba Website at https://www.samba.org/samba/security/CVE-2018-1050.html