Samba Community Discloses Second Major Security Flaw

Samba is a popular open-source utility that allows Windows clients to access files on Linux servers.

Developers said this week that the vulnerability affects all stable versions of Samba up to Samba 2.2.8, and an active exploit of the bug has been reported in the wild. Alpha versions of Samba 3.0 and above are not vulnerable, the Samba community reported.

The community released version 2.2.8a, which contains updates to address the security issue. Further information and the update are available at the Samba Web site.

This is the second major security hole to be found in Samba in recent weeks. The earlier one can also allow attackers to take over systems. (See "Linux Security Hole Could Allow Attackers To Take Over Systems.")

This story courtesy of Techweb.com.