There is a buffer overflow in pam_smb versions 1.1.5 and below that
could be exploited to gain root privileges. This package is not
used by default in Conectiva Linux, but it is part of the
distribution. Remote root access could be gained if a vulnerable
pam_smb were to be used to authenticate users in remote services,
such as ssh, telnet and others.
SOLUTION All pam_smb users should upgrade immediately.
Some of the products that appear on this site are from companies from which QuinStreet receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. QuinStreet does not include all companies or all types of products available in the marketplace.