Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?
Options
ariek
Posts: 30 
Freshman Member
Freshman Member
CVE-ID#: CVE-2021-44142
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Samba version on Zyxel NAS520:
:~#smbstatusSamba version 4.1.70
Accepted Solution
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
Guru Member
All Replies
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
Categories
- All Categories
- 435 Beta Program
- 2.7K Nebula
- 176 Nebula Ideas
- 118 Nebula Status and Incidents
- 6.1K Security
- 428 USG FLEX H Series
- 298 Security Ideas
- 1.6K Switch
- 79 Switch Ideas
- 1.2K Wireless
- 44 Wireless Ideas
- 6.7K Consumer Product
- 274 Service & License
- 422 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 89 Security Highlight
