Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?
ariek
Posts: 30 Freshman Member
CVE-ID#: CVE-2021-44142
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Samba version on Zyxel NAS520:
:~#smbstatus
Samba version 4.1.7
0
Accepted Solution
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
All Replies
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 148 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight