DSM 5.0-4493 Update 3

Publish Time: 2014-07-24 00:00:00 UTC+8

Last Updated: UTC+8

Status
Resolved

Description

The update of DSM 5.0-4493 Update 3 addresses the following security vulnerabilities regarding SAMBA:

  • allows remote attackers to use the weakness to perform DoS attacks (causes infinite loop and CPU consumption) via a malformed UDP packet (CVE-2014-0244).
  • allows remote authenticated users to use the weakness of attempting to read Unicode pathname without specifying use of Unicode, in consequence to cause a denial of service (CVE-2014-3493).

Resolution

To fix the security issues, please go to DSM > Control Panel > Update & Restore> DSM Update and install the latest updates to protect your DiskStation from malicious attacks.