sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-10-25 19:33:18 +03:00
Code Activity

CVE-2015-5370: s3:rpc_server: ensure that the message ordering doesn't violate the spec

Browse Source 
The first pdu is always a BIND.

REQUEST pdus are only allowed once the authentication
is finished.

A simple anonymous authentication is finished after the BIND.
Real authentication may need additional ALTER or AUTH3 exchanges.

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344

Signed-off-by: Jeremy Allison <jra@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>
This commit is contained in:
Jeremy Allison
2015-07-07 09:15:39 +02:00
committed by Stefan Metzmacher
parent 302d927ac2
commit f74c4c8335
3 changed files with 48 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
source3/rpc_server/rpc_handles.c
View File

@@ -69,6 +69,7 @@ int make_base_pipes_struct(TALLOC_CTX *mem_ctx,
p->msg_ctx = msg_ctx;
p->transport = transport;
p->endian = endian;
p->allow_bind = true;
p->remote_address = tsocket_address_copy(remote_address, p);
if (p->remote_address == NULL) {