Home Unlabelled IBM Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2017-9461)

IBM Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2017-9461)

By
Monday, August 14, 2017
Read
Add Comment

A Samba vulnerability affects IBM Spectrum Scale SMB protocol access method which could allow denial of service, caused by improper handling of dangling symlinks in smbd. A remote attacker could exploit this vulnerability to cause a fd_open_atomic infinite loop with high CPU usage and memory consumption on the system.

CVE(s): CVE-2017-9461

Affected product(s) and affected version(s):

IBM Spectrum Scale V4.2.3.0

IBM Spectrum Scale V4.2.2.0 thru V4.2.2.3

IBM Spectrum Scale V4.2.1.0 thru V4.2.1.2

IBM Spectrum Scale V4.2.0 thru V4.2.0.4

IBM Spectrum Scale V4.1.1.0 thru V4.1.1.15

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2uV72JS
X-Force Database: http://ift.tt/2vxanSU

The post IBM Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2017-9461) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2wIPmTV
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us