Samba DCE/RPC IDL Compiler Remote Code Execution Vulnerability (CVE-2012-1182)
Severity: : Critical
CVE Kennungen: : CVE-2012-1182
Advisory Date: 21 de июля de 2015
DESCRIPTION
The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004984
Trend Micro Deep Security DPI Rule Name: 1004984 - Samba DCE/RPC IDL Compiler Remote Code Execution Vulnerability (CVE-2012-1182)
AFFECTED SOFTWARE AND VERSION:
- samba samba 3.0.0
- samba samba 3.0.1
- samba samba 3.0.10
- samba samba 3.0.11
- samba samba 3.0.12
- samba samba 3.0.13
- samba samba 3.0.14
- samba samba 3.0.14a
- samba samba 3.0.15
- samba samba 3.0.16
- samba samba 3.0.17
- samba samba 3.0.18
- samba samba 3.0.19
- samba samba 3.0.2
- samba samba 3.0.20
- samba samba 3.0.20a
- samba samba 3.0.20b
- samba samba 3.0.21
- samba samba 3.0.21a
- samba samba 3.0.21b
- samba samba 3.0.21c
- samba samba 3.0.22
- samba samba 3.0.23
- samba samba 3.0.23a
- samba samba 3.0.23b
- samba samba 3.0.23c
- samba samba 3.0.23d
- samba samba 3.0.24
- samba samba 3.0.25
- samba samba 3.0.25a
- samba samba 3.0.25b
- samba samba 3.0.25c
- samba samba 3.0.26
- samba samba 3.0.26a
- samba samba 3.0.27
- samba samba 3.0.28
- samba samba 3.0.29
- samba samba 3.0.2a
- samba samba 3.0.3
- samba samba 3.0.30
- samba samba 3.0.31
- samba samba 3.0.32
- samba samba 3.0.33
- samba samba 3.0.34
- samba samba 3.0.35
- samba samba 3.0.36
- samba samba 3.0.37
- samba samba 3.0.4
- samba samba 3.0.5
- samba samba 3.0.6
- samba samba 3.0.7
- samba samba 3.0.8
- samba samba 3.0.9
- samba samba 3.1
- samba samba 3.2.0
- samba samba 3.2.1
- samba samba 3.2.10
- samba samba 3.2.11
- samba samba 3.2.12
- samba samba 3.2.13
- samba samba 3.2.14
- samba samba 3.2.15
- samba samba 3.2.2
- samba samba 3.2.3
- samba samba 3.2.4
- samba samba 3.2.5
- samba samba 3.2.6
- samba samba 3.2.7
- samba samba 3.2.8
- samba samba 3.2.9
- samba samba 3.3.0
- samba samba 3.3.1
- samba samba 3.3.10
- samba samba 3.3.11
- samba samba 3.3.12
- samba samba 3.3.13
- samba samba 3.3.14
- samba samba 3.3.15
- samba samba 3.3.16
- samba samba 3.3.2
- samba samba 3.3.3
- samba samba 3.3.4
- samba samba 3.3.5
- samba samba 3.3.6
- samba samba 3.3.7
- samba samba 3.3.8
- samba samba 3.3.9
- samba samba 3.4.0
- samba samba 3.4.1
- samba samba 3.4.10
- samba samba 3.4.11
- samba samba 3.4.12
- samba samba 3.4.13
- samba samba 3.4.14
- samba samba 3.4.15
- samba samba 3.4.2
- samba samba 3.4.3
- samba samba 3.4.4
- samba samba 3.4.5
- samba samba 3.4.6
- samba samba 3.4.7
- samba samba 3.4.8
- samba samba 3.4.9
- samba samba 3.5.0
- samba samba 3.5.1
- samba samba 3.5.10
- samba samba 3.5.11
- samba samba 3.5.12
- samba samba 3.5.13
- samba samba 3.5.2
- samba samba 3.5.3
- samba samba 3.5.4
- samba samba 3.5.5
- samba samba 3.5.6
- samba samba 3.5.7
- samba samba 3.5.8
- samba samba 3.5.9
- samba samba 3.6.0
- samba samba 3.6.1
- samba samba 3.6.2
- samba samba 3.6.3