E07-7n301
CVSS:
9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)
False Positive:
f
Variants:
1
Year:
2007
Description
This strike exploits a vulnerability in the Samba Domain Controller service. When handling SAM LOGON requests. The formula (Len*2+51) is used with Len as the length of Mailslot Name in the SAM LOGON request. If this length is greater than 262 bytes, the data will overwrite critical memory in the buffer.