- Overview
- Features
- Architecture & Open API
- Try NeXpose
- Buy NeXpose
- System Requirements
- Vulnerabilities Tested
- NeXpose Information
Search Hints:
Try searching for a product or vendor.
Only vulnerabilities that match all search terms will be returned.
Enclose search terms in double quotes for an exact search.
For CVE searches, only enter the CVE-YYYY-XXXX code.
Try searching for a product or vendor.
Only vulnerabilities that match all search terms will be returned.
Enclose search terms in double quotes for an exact search.
For CVE searches, only enter the CVE-YYYY-XXXX code.
NeXpose Vulnerability Database
< Previous Next >Samba receive_smb_raw() Buffer Overflow
Severity |
CVSS |
Published |
Added |
Modified |
|---|---|---|---|---|
| Critical (9) | 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) | May 28, 2008 | Jun 22, 2008 | Jul 1, 2008 |
Description:
Versions 3.0.0 through 3.0.29a (inclusive) of Samba, the Server Message Block protocol server are vulnerable to a heap-based buffer overflow due to a calculation error in the receive_smb_raw() function. An attacker could construct a malicious SMB packet to exploit the vulnerability and execute arbitrary code under the context of the Samba server user.
References:
- CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105
- SECUNIA: http://secunia.com/advisories/30228/
- BID: http://www.securityfocus.com/bid/29404
- URL: http://secunia.com/secunia_research/2008-20/advisory/
- URL: http://samba.org/samba/security/CVE-2008-1105.html
Solution:
Upgrade to Samba 3.0.30
Download and apply the upgrade from: http://us1.samba.org/samba/ftp/old-versions/samba-3.0.30.tar.gz
Information on these pages is summary information extracted from the NeXpose Vulnerabilty Assessment system. Full details are provided within the NeXpose product for licensed users.