Executive Summary
Summary | |
---|---|
Title | Updated samba packages fix security issue |
Informations | |||
---|---|---|---|
Name | RHSA-2004:681 | First vendor Publication | 2004-12-21 |
Vendor | RedHat | Last vendor Modification | 2004-12-21 |
Severity (Vendor) | N/A | Revision | 01 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Problem Description: Updated samba packages that fix an integer overflow vulnerability are now available for Red Hat Enterprise Linux 2.1 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 3. Problem description: Samba provides file and printer sharing services to SMB/CIFS clients. Greg MacManus of iDEFENSE Labs has discovered an integer overflow bug in Samba versions prior to 3.0.10. An authenticated remote user could exploit this bug which may lead to arbitrary code execution on the Samba server. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-1154 to this issue. Users of Samba should upgrade to these updated packages, which contain backported security patches, and are not vulnerable to these issues. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: http://www.redhat.com/docs/manuals/enterprise/ 5. Bug IDs fixed (http://bugzilla.redhat.com/): 142472 - CAN-2004-1154 Samba authenticated remote root |
Original Source
Url : https://rhn.redhat.com/errata/RHSA-2004-681.html |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10236 | |||
Oval ID: | oval:org.mitre.oval:def:10236 | ||
Title: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Description: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-1154 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:1459 | |||
Oval ID: | oval:org.mitre.oval:def:1459 | ||
Title: | HP-Samba DACL Remote Integer Overflow Vulnerability (CIFS A.01) | ||
Description: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-1154 | Version: | 1 |
Platform(s): | HP-UX 11 | Product(s): | Samba |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:642 | |||
Oval ID: | oval:org.mitre.oval:def:642 | ||
Title: | HP-Samba DACL Remote Integer Overflow Vulnerability (CIFS A.02) | ||
Description: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-1154 | Version: | 3 |
Platform(s): | HP-UX 11 | Product(s): | Samba |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2008-09-24 | Name : Gentoo Security Advisory GLSA 200412-13 (Samba) File : nvt/glsa_200412_13.nasl |
2008-09-04 | Name : FreeBSD Ports: samba, ja-samba File : nvt/freebsd_samba.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 701-1 (samba) File : nvt/deb_701_1.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 701-2 (samba) File : nvt/deb_701_2.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
12422 | Samba smbd Security Descriptor Parsing Remote Overflow |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt RuleID : 4674 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode DACL overflow attempt RuleID : 4673 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx DACL overflow attempt RuleID : 4672 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC DACL overflow attempt RuleID : 4671 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt RuleID : 4670 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode DACL overflow attempt RuleID : 4669 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC andx DACL overflow attempt RuleID : 4668 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC DACL overflow attempt RuleID : 4667 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt RuleID : 4666 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode DACL overflow attempt RuleID : 4665 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx DACL overflow attempt RuleID : 4664 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC DACL overflow attempt RuleID : 4663 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx SACL overflow attempt RuleID : 4662 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode SACL overflow attempt RuleID : 4661 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx SACL overflow attempt RuleID : 4660 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC SACL overflow attempt RuleID : 4659 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode andx SACL overflow attempt RuleID : 4658 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode SACL overflow attempt RuleID : 4657 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC andx SACL overflow attempt RuleID : 4656 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC SACL overflow attempt RuleID : 4655 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx SACL overflow attempt RuleID : 4654 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode SACL overflow attempt RuleID : 4653 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx SACL overflow attempt RuleID : 4652 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC SACL overflow attempt RuleID : 4651 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3041-community - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3041 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3040-community - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3040 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx DACL overflow attempt RuleID : 3039-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx DACL overflow attempt RuleID : 3039 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE DACL overflow attempt RuleID : 3038-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE DACL overflow attempt RuleID : 3038 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3037-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3037 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3036-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3036 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx DACL overflow attempt RuleID : 3035-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx DACL overflow attempt RuleID : 3035 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE DACL overflow attempt RuleID : 3034-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE DACL overflow attempt RuleID : 3034 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3033-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3033 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3032-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3032 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx SACL overflow attempt RuleID : 3031-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx SACL overflow attempt RuleID : 3031 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE SACL overflow attempt RuleID : 3030-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE SACL overflow attempt RuleID : 3030 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3029-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3029 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3028-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3028 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx SACL overflow attempt RuleID : 3027-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx SACL overflow attempt RuleID : 3027 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE SACL overflow attempt RuleID : 3026-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE SACL overflow attempt RuleID : 3026 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3025-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3025 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3024-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3024 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3023-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3023 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3022-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3022 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3021-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3021 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3020-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3020 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3019-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3019 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3018-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3018 - Revision : 6 - Type : NETBIOS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-01-15 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-41-1.nasl - Type : ACT_GATHER_INFO |
2005-07-14 | Name : The remote host is missing Sun Security Patch number 119757-43 File : solaris10_119757.nasl - Type : ACT_GATHER_INFO |
2005-07-14 | Name : The remote host is missing Sun Security Patch number 119758-43 File : solaris10_x86_119758.nasl - Type : ACT_GATHER_INFO |
2005-07-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_3b3676be52e111d9a9e70001020eed82.nasl - Type : ACT_GATHER_INFO |
2005-04-01 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-701.nasl - Type : ACT_GATHER_INFO |
2005-02-03 | Name : The remote host is missing a vendor-supplied security patch File : suse_SA_2004_045.nasl - Type : ACT_GATHER_INFO |
2005-01-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-020.nasl - Type : ACT_GATHER_INFO |
2004-12-28 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2004-158.nasl - Type : ACT_GATHER_INFO |
2004-12-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-561.nasl - Type : ACT_GATHER_INFO |
2004-12-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-562.nasl - Type : ACT_GATHER_INFO |
2004-12-23 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-681.nasl - Type : ACT_GATHER_INFO |
2004-12-19 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200412-13.nasl - Type : ACT_GATHER_INFO |
2004-12-17 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-670.nasl - Type : ACT_GATHER_INFO |
2004-12-16 | Name : Remote code may be run on the remote server. File : samba_dacl_overflow.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:48:49 |
|
2013-05-11 12:22:43 |
|