¡¾¸´ÏÖ¡¿Samba ÈÏ֤ǰÃüÁî×¢Èë©¶´£¨CVE-2025-10230 £©
·¢²¼Ê±¼ä 2025-10-29½üÈÕ£¬SambaÍŶӷ¢²¼ÁËÒ»·Ý½ô¼±°²È«¹«¸æ£¬Ö¼ÔÚ½â¾öÁ½¸ö©¶´¡£ÆäÖаüÀ¨Ò»¸öÑÏÖØµÄÈÏ֤ǰÃüÁî×¢Èë©¶´£¨CVE-2025-10230£©£¬¿ÉÔÊÐí¹¥»÷ÕßÔÚÎÞÐèÈÏÖ¤µÄÌõ¼þ϶ÔSamba Active DirectoryÓò¿ØÖÆÆ÷ (AD DC) Ôì³ÉÔ¶³Ì´úÂëÖ´ÐУ¨RCE£©¡£¸Ã©¶´µÄCVSSÆÀ·ÖΪ×î¸ß10.0£¬¿ÉÓ°ÏìÆôÓÃÁËWINSÖ§³ÖÇÒÉèÖÃÁËwins hook²ÎÊýµÄϵͳ¡£
Ó°Ïì°æ±¾
©¶´³ÉÒò
./source4/nbt_server/wins/wins_hook.c ÎļþÖÐµÄ wins_hook º¯ÊýÀ»á½«½ÓÊÕµ½µÄNetBIOSÃû³Æ×Ö·û´®rec->name->nameÆ´½Óµ½cmd×Ö·û´®ÖС£

ÔÚºóÐøµÄ´úÂë´¦ÀíÖУ¬cmd×Ö·û´®½«ÓÃÓÚÃüÁîÖ´ÐС£Í¬Ê±£¬ÕâÀï¶ÔNetBIOSÊý¾Ý½ÓÊÕûÓÐ×öÈκμøÈ¨ºÍ¼ì²é£¬´Ó¶øÔì³ÉÈÏ֤ǰµÄÃüÁîÖ´ÐЩ¶´¡£
©¶´¸´ÏÖ
ÒÔ´´½¨Îļþ¼ÐÃüÁîΪÀý¡£Ê×ÏÈ£¬ÎÞÐèÈÏÖ¤¼´¿É·¢ËͶñÒâµÄ±¨ÎÄ£º

È»ºó£¬ÔÚAD·þÎñÆ÷ÉÏ·¢ÏÖÎļþ¼Ð123±»³É¹¦´´½¨ÁË¡£

ÐÞ¸´½¨Òé
£¨1£©·½Ê½Ò»£ºÔÚSamba ADÓò¿ØÖÆÆ÷µÄsmb.confÖУ¬ÈçϽûÓÃwins support¡£

£¨2£©·½Ê½¶þ£ºÔÚSamba ADÓò¿ØÖÆÆ÷µÄsmb.confÖУ¬ÈçϽûÓòÎÊýwins hook¡£

[1]https://www.samba.org/samba/security/CVE-2025-10230.html
mansion88Ã÷Éý»ý¼«·ÀÓùʵÑéÊÒ£¨ADLab£©
ADLab³ÉÁ¢ÓÚ1999Ä꣬ÊÇÖйú°²È«ÐÐÒµ×îÔç³ÉÁ¢µÄ¹¥·À¼¼ÊõÑо¿ÊµÑéÊÒÖ®Ò»£¬Î¢ÈíMAPP¼Æ»®ºËÐijÉÔ±£¬¡°ºÚȸ¹¥»÷¡±¸ÅÄîÊ×ÍÆÕß¡£½ØÖÁĿǰ£¬ADLabÒÑͨ¹ý CNVD/CNNVD/NVDB/CVEÀۼƷ¢²¼°²È«Â©¶´6500Óà¸ö£¬³ÖÐø±£³Ö¹ú¼ÊÍøÂ簲ȫÁìÓòÒ»Á÷Ë®×¼¡£ÊµÑéÊÒÑо¿·½Ïòº¸Ç»ù´¡°²È«Ñо¿¡¢Êý¾Ý°²È«Ñо¿¡¢5G°²È«Ñо¿¡¢AI+°²È«Ñо¿¡¢ÎÀÐǰ²È«Ñо¿¡¢ÔËÓªÉÌ»ù´¡ÉèÊ©°²È«Ñо¿¡¢Òƶ¯°²È«Ñо¿¡¢ÎïÁªÍø°²È«Ñо¿¡¢³µÁªÍø°²È«Ñо¿¡¢¹¤¿Ø°²È«Ñо¿¡¢ÐÅ´´°²È«Ñо¿¡¢Ôư²È«Ñо¿¡¢ÎÞÏß°²È«Ñо¿¡¢¸ß¼¶ÍþвÑо¿¡¢¹¥·À¶Ô¿¹¼¼ÊõÑо¿¡£Ñо¿³É¹ûÓ¦ÓÃÓÚ²úÆ·ºËÐļ¼ÊõÑо¿¡¢¹ú¼ÒÖØµã¿Æ¼¼ÏîÄ¿¹¥¹Ø¡¢×¨Òµ°²È«·þÎñµÈ¡£



¾©¹«Íø°²±¸11010802024551ºÅ