|
|||
Rule General Information |
---|
Release Date: | 2017-07-19 | |
Rule Name: | Samba DNS Reply Flag Denial of Service Vulnerability -2 (CVE-2014-0239) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | The internal DNS server in Samba 4.x before 4.0.18 does not check the QR field in the header section of an incoming DNS message before sending a response, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged response packet that triggers a communication loop. | |
Impact: | An attacker can launch a denial of service attack by exploiting the vulnerability successfully. | |
Affected OS: | Windows | |
Reference: | SecurityFocusBID:67691 SecurityTrackerID:1030309 |
|
Solutions |
---|
More advisories have been published on the website, please visit for more suggestions: http://www.samba.org/samba/security/CVE-2014-0239 |