Preface: SMB password overflowLogo -Internet Security Systems

SMB password overflow
advICE :Intrusions : 2000504
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?

Summary

Denial of service attempt or possible intrusion attempt.

Details

Probable attempt to break into SMB server by using a very long password. This may be an attempt to crash or break into an SMB server - this especially affects older Linux implementations of the SMB protocol.

 more information
BugtraqID: 1816   SAMBA Long Password Buffer Overflow Vulnerability
 
CERT: VB-97.10.samba  
 
advICE: Buffer overflows  
More about this general class of attacks, which is the root cause of many attacks on the Internet.  
CVE-1999-0182   Samba password buffer overflow allows root access.
 
CIAC: H-110  
 

 parametric information
lengthThe length of the password; if it is longer than a few hundred characters, then it may be a buffer overflow attempt.

 configuration for this item
login.maxpass100The maximum length of a password.

 
Version appeared:
Privacy Policy |  Copyright Info