CVS update: samba/source/rpc_parse
Jean Francois Micouleau
Jean-Francois.Micouleau at dalalu.fr
Wed Sep 25 17:03:53 EST 2002
On Wed, 25 Sep 2002 tpot at samba.org wrote:
> Log Message:
> A PRINTER_INFO_2 doesn't necessarily contain a security descriptor.
> For example, Windows NT/2K doesn't return a secdesc for a enumprinters
> level2 but Samba currently does. Fix by checking the offset is
> non-zero before trying to unmarshall a security descriptor.
uh ? you can do a enumprinters anonymously so samba is leaking security
informations to anon users ! This time samba is worse than the other
software it's communicating with ;-)
J.F.
More information about the samba-cvs
mailing list