Executive Summary

Informations
Name CVE-2004-0930 First vendor Publication 2005-01-27
Vendor Cve Last vendor Modification 2017-10-11

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0930

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10936
 
Oval ID: oval:org.mitre.oval:def:10936
Title: The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.
Description: The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.
Family: unix Class: vulnerability
Reference(s): CVE-2004-0930
Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 6
Application 8
Os 1
Os 1
Os 9
Os 1
Os 2
Os 2

OpenVAS Exploits

Date Description
2009-10-10 Name : SLES9: Security update for samba
File : nvt/sles9p5015059.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200411-21 (samba)
File : nvt/glsa_200411_21.nasl
2008-09-04 Name : FreeBSD Ports: samba
File : nvt/freebsd_samba1.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
11555 Samba ms_fnmatch() Function Wildcard Matching Remote DoS

Samba server contains a flaw in ms_fnmatch.c that may allow a malicious user to cause a denial of service. The issue is triggered when a request is made for a resource which contains multiple wildcard characters; this causes the server to fall into a loop whose size grows exponentially with the number of wildcard characters used. It is possible that the flaw may allow a remote server crash, resulting in a loss of availability.

Snort® IPS/IDS

Date Description
2014-01-10 Samba wildcard filename matching denial of service attempt
RuleID : 15581 - Revision : 5 - Type : SERVER-SAMBA

Nessus® Vulnerability Scanner

Date Description
2009-04-23 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_ba13dc13340d11d9ac1b000d614f7fad.nasl - Type : ACT_GATHER_INFO
2006-01-15 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-22-1.nasl - Type : ACT_GATHER_INFO
2005-07-14 Name : The remote host is missing Sun Security Patch number 119757-43
File : solaris10_119757.nasl - Type : ACT_GATHER_INFO
2005-07-14 Name : The remote host is missing Sun Security Patch number 119758-43
File : solaris10_x86_119758.nasl - Type : ACT_GATHER_INFO
2004-11-30 Name : The remote Fedora Core host is missing a security update.
File : fedora_2004-459.nasl - Type : ACT_GATHER_INFO
2004-11-30 Name : The remote Fedora Core host is missing a security update.
File : fedora_2004-460.nasl - Type : ACT_GATHER_INFO
2004-11-17 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2004-632.nasl - Type : ACT_GATHER_INFO
2004-11-16 Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2004_040.nasl - Type : ACT_GATHER_INFO
2004-11-13 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200411-21.nasl - Type : ACT_GATHER_INFO
2004-11-13 Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2004-131.nasl - Type : ACT_GATHER_INFO
2004-11-13 Name : The remote service is vulnerable to several flaws.
File : samba_wildcard.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
APPLE http://lists.apple.com/archives/security-announce/2005/Mar/msg00000.html
BID http://www.securityfocus.com/bid/11624
BUGTRAQ http://marc.info/?l=bugtraq&m=109993720717957&w=2
CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000899
GENTOO http://www.gentoo.org/security/en/glsa/glsa-200411-21.xml
IDEFENSE http://www.idefense.com/application/poi/display?id=156&type=vulnerabiliti...
MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2004:131
OPENPKG http://marc.info/?l=bugtraq&m=110330519803655&w=2
OVAL https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
SCO ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.17/SCOSA-2005.17.txt
SGI ftp://patches.sgi.com/support/free/security/advisories/20041201-01-P
SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-101783-1
SUSE http://www.novell.com/linux/security/advisories/2004_40_samba.html
UBUNTU https://www.ubuntu.com/usn/usn-22-1/
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/17987

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
Date Informations
2021-05-04 12:02:25
  • Multiple Updates
2021-04-22 01:02:35
  • Multiple Updates
2020-05-23 00:15:54
  • Multiple Updates
2017-10-11 09:23:24
  • Multiple Updates
2017-07-11 12:01:32
  • Multiple Updates
2016-12-08 09:23:21
  • Multiple Updates
2016-10-18 12:01:23
  • Multiple Updates
2016-04-26 12:54:13
  • Multiple Updates
2014-02-17 10:28:09
  • Multiple Updates
2014-01-19 21:22:19
  • Multiple Updates
2013-08-20 17:22:12
  • Multiple Updates
2013-05-11 11:43:22
  • Multiple Updates