1. Knowledge Base
  2. Security Advisories

PZOS-2013-004: PZOS CIFS File Resource Exhaustion

Issue Date: 2013/03/04
Updated Date: 2013/03/04
Title: PZOS CIFS File Resource Exhaustion
Classification: Moderate
Status: Closed
Affected Products: PZOS or Below


A vulnerability in the CIFS/SMB implementation on the Panzura PZOS version or below has been discovered. Exploitation of this vulnerability may result in a Denial of Service (DoS) attack.


A condition exists in the PZOS implementation of the CIFS protocol whereby an excessive number of file requests in a short timeframe could disable the Cloud Controller CIFS service.

A targeted exploit of this vulnerability could result in loss of service due to service failure.


Upgrade the Panzura software to PZOS version or higher; any future major or minor releases will also correct the issue. Release notes for this version will outline details as necessary for this correction.