Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?
Options
ariek
Posts: 30 Freshman Member
CVE-ID#: CVE-2021-44142
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution. All versions of Samba prior to 4.13.17. This vulnerability allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit.
Samba version on Zyxel NAS520:
:~#smbstatus
Samba version 4.1.7
0
Accepted Solution
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
All Replies
-
Are Zyxel NAS devices affected by an out-of-bounds (OOB) vulnerability in Samba?I don't think so:admin@NAS520:/$ ls /usr/lib/samba/vfs/
aio_linux.so full_audit.so recycle.soNo fruit.
1
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 74 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 334 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 886 Nebula FAQ
- 415 Security FAQ
- 228 Switch FAQ
- 198 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight