topic Re: Samba Out-of-Bounds Heap R/W Remote Code Execution (RCE) Vulnerability (CVE-2021-44142) in Advanced Threat Prevention Discussions https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463736#M1484 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/43480">@BPry</a>&nbsp; Do you have any idea on this? Thank you in advance.</P> Sun, 06 Feb 2022 23:38:36 GMT Pras 2022-02-06T23:38:36Z Samba Out-of-Bounds Heap R/W Remote Code Execution (RCE) Vulnerability (CVE-2021-44142) https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/462961#M1482 <P>Hi All,</P><P><SPAN>I would like to know if PAN-OS is affected by the Samba Out-of-Bounds Heap R/W Remote Code Execution (RCE) Vulnerability (CVE-2021-44142) and if they are what actions need to be taken.</SPAN><SPAN>&nbsp;</SPAN></P><P><SPAN>We are running 9.1.11-h3 on PA-Firewall and 8.1.15 Panorama.</SPAN></P><P>I have searched the PA threat vault and cannot find anything related there.</P><P>Many Thanks,</P><P>&nbsp;</P><P><SPAN>&nbsp;</SPAN></P> Thu, 03 Feb 2022 06:19:07 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/462961#M1482 Pras 2022-02-03T06:19:07Z Re: Samba Out-of-Bounds Heap R/W Remote Code Execution (RCE) Vulnerability (CVE-2021-44142) https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463736#M1484 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/43480">@BPry</a>&nbsp; Do you have any idea on this? Thank you in advance.</P> Sun, 06 Feb 2022 23:38:36 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463736#M1484 Pras 2022-02-06T23:38:36Z Re: Samba Out-of-Bounds Heap R/W Remote Code Execution (RCE) Vulnerability (CVE-2021-44142) https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463760#M1485 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/202203">@Pras</a>,</P> <P>First and foremost, your Panorama major version should never be behind your firewalls. I'd recommend upgrading your Panorama instance to 9.1 at least to match your firewalls.&nbsp;</P> <P>&nbsp;</P> <P>While PAN-OS uses Samba, Panorama does not. Since PAN-OS only uses Samba internally and it isn't exposed, I don't believe this would be exploitable at all in its current deployment.&nbsp;</P> Mon, 07 Feb 2022 03:11:07 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463760#M1485 BPry 2022-02-07T03:11:07Z Re: Samba Out-of-Bounds Heap R/W Remote Code Execution (RCE) Vulnerability (CVE-2021-44142) https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463762#M1486 <P>Thanks for the update&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/43480">@BPry</a>&nbsp; I appreciate it. Thank you for your suggestion too.&nbsp;<BR />Cheers,</P> Mon, 07 Feb 2022 03:27:30 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/samba-out-of-bounds-heap-r-w-remote-code-execution-rce/m-p/463762#M1486 Pras 2022-02-07T03:27:30Z