ALERT: Latest CVS repository code can cause DoS in LSASS.EXE.

Luke Kenneth Casson Leighton lkcl at
Tue Oct 19 14:12:12 GMT 1999

if you are using the latest stable samba source (all officially released
versions of samba up to and including 2.0.5b), please ignore this message
it is NOT relevant to you.

for those people who are tracking the latest samba developments, you
should be aware that certain configurations of smbclient / rpcclient can
cause LSASS.EXE to die with certain configurations of NT 4.0 Service Pack
4.  the repercussions of this are that you will need to reboot or even
power-cycle the machine.

i thought it best to let you know immediately as i do not want your
systems to die when you were expecting an "smb: />" prompt instead!

i am investigating the parameters of the problem and i recommend that you
use a cvs snapshot from two weeks ago if you need to use smbclient /
rpcclient's latest enhancements (NTLMv2, Win2000 compatibility etc).


luke (samba team, iss x-force research).

<a href="mailto:lkcl at"   > Luke Kenneth Casson Leighton    </a>
<a href=""> Samba and Network Development   </a>
<a href=""        > Samba Web site                  </a>
<a href=""      > Internet Security Systems, Inc. </a>

More information about the samba-technical mailing list