Denial of Service Vulnerability in Samba: Handling Dangling Symlinks

Denial of Service Vulnerability in Samba: Handling Dangling Symlinks

CVE-2017-9461 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:C

smbd in Samba before 4.4.10 and 4.5.x before 4.5.6 has a denial of service vulnerability (fd_open_atomic infinite loop with high CPU usage and memory consumption) due to wrongly handling dangling symlinks.

Learn more about our Web Application Penetration Testing UK.