- Overview
- Features
- Architecture & Open API
- Try NeXpose
- Buy NeXpose
- System Requirements
- Vulnerabilities Tested
- NeXpose Information
Search Hints:
Try searching for a product or vendor.
Only vulnerabilities that match all search terms will be returned.
Enclose search terms in double quotes for an exact search.
For CVE searches, only enter the CVE-YYYY-XXXX code.
Try searching for a product or vendor.
Only vulnerabilities that match all search terms will be returned.
Enclose search terms in double quotes for an exact search.
For CVE searches, only enter the CVE-YYYY-XXXX code.
NeXpose Vulnerability Database
< Previous Next >Samba nmbd Mailslot Packet Denial of Service Vulnerability
Severity |
CVSS |
Published |
Added |
Modified |
|---|---|---|---|---|
| Severe (5) | 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Dec 31, 2004 | Aug 31, 2007 | Sep 21, 2007 |
Description:
Certain versions of Samba contain a flawed implementation of the process_logon_packet function in the nmbd daemon. As a result, an unauthenticated attacker can craft a corrupt SAM_UAS_CHANGE request that causes the nmbd daemon to crash. Note that in order for exploitation to be successful, domain logons must be enabled in the configuration file ("domain logons = yes" in smb.conf).
References:
- BID: http://www.securityfocus.com/bid/11156
- CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0808
- OSVDB: http://www.osvdb.org/displayvuln.php?osvdb_id=9917
- SECUNIA: http://secunia.com/advisories/12516/
- URL: http://samba.org/samba/security/CVE-2004-0807_CVE-2004-0808.html
Solution:
Upgrade to Samba 3.0.7
Download and apply the upgrade from: http://us4.samba.org/samba/ftp/stable/samba-3.0.7.tar.gz
Information on these pages is summary information extracted from the NeXpose Vulnerabilty Assessment system. Full details are provided within the NeXpose product for licensed users.