CVE-2007-5904

Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function.

Date published : 2007-11-09

http://www.securityfocus.com/bid/26438

http://www.securityfocus.com/archive/1/487808/100/0/threaded