CVE-2018-10858 samba: insufficient input validation in libsmbclient

SUMMARY

Not exposed

CVE ID

CVE-2018-10858

DESCRIPTION

A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client.

CVSS3 Base Score    4.3
Public Date: 2018-08-16
 

RESOLUTION

Unitrends assessment:  Not exposed (false positive)
     Red Hat Enterprise Linux 6 samba is not affected.

 

LINK TO ADVISORIES

Have more questions?

Contact us

Was this article helpful?
0 out of 0 found this helpful

Provide feedback for the Documentation team!

Browse this section