Novell Home

CVE-2014-3560

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2014-3560 at MITRE

Description

NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in the unstrcpy macro in string_wrappers.h.

NVD CVSS v2 Base Score: 7.9 (AV:A/AC:M/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entry: 889429

SUSE Security Advisories:

© 2014 Novell