search for: samrchangepassword

...aped user input parameters are passed == as arguments to /bin/sh allowing for remote == command execution == ========================================================== =========== Description =========== This bug was originally reported against the anonymous calls to the SamrChangePassword() MS-RPC function in combination with the "username map script" smb.conf option (which is not enabled by default). After further investigation by Samba developers, it was determined that the problem was much broader and impacts remote printer and file share management as well. The root...