|
|
|||
| Rule General Information |
|---|
| Release Date: | 2017-07-19 | |
| Rule Name: | Samba DNS Reply Flag Denial of Service Vulnerability -2 (CVE-2014-0239) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The internal DNS server in Samba 4.x before 4.0.18 does not check the QR field in the header section of an incoming DNS message before sending a response, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged response packet that triggers a communication loop. | |
| Impact: | An attacker can launch a denial of service attack by exploiting the vulnerability successfully. | |
| Affected OS: | Windows | |
| Reference: | SecurityFocusBID:67691 SecurityTrackerID:1030309 |
|
| Solutions |
|---|
| More advisories have been published on the website, please visit for more suggestions: http://www.samba.org/samba/security/CVE-2014-0239 |