DSM 5.0-4493 Update 3
Publish Time: 2014-07-24 00:00:00 UTC+8
Last Updated: UTC+8
- Status
- Resolved
Description
The update of DSM 5.0-4493 Update 3 addresses the following security vulnerabilities regarding SAMBA:
- allows remote attackers to use the weakness to perform DoS attacks (causes infinite loop and CPU consumption) via a malformed UDP packet (CVE-2014-0244).
- allows remote authenticated users to use the weakness of attempting to read Unicode pathname without specifying use of Unicode, in consequence to cause a denial of service (CVE-2014-3493).
Resolution
To fix the security issues, please go to DSM > Control Panel > Update & Restore> DSM Update and install the latest updates to protect your DiskStation from malicious attacks.