Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?

ariek
Posts: 30
Freshman Member



CVE-ID#: CVE-2021-44142
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Samba version on Zyxel NAS520:
:~#smbstatus
Samba version 4.1.7
0
Accepted Solution
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
All Replies
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
Categories
- All Categories
- 434 Beta Program
- 2.7K Nebula
- 173 Nebula Ideas
- 117 Nebula Status and Incidents
- 6.1K Security
- 409 USG FLEX H Series
- 297 Security Ideas
- 1.6K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 43 Wireless Ideas
- 6.7K Consumer Product
- 268 Service & License
- 416 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.1K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 82 About Community
- 87 Security Highlight