Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?

ariek
Posts: 30
Freshman Member



CVE-ID#: CVE-2021-44142
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Samba version on Zyxel NAS520:
:~#smbstatus
Samba version 4.1.7
0
Accepted Solution
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
All Replies
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 166 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 366 USG FLEX H Series
- 293 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 264 Service & License
- 408 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight