Executive Summary
Summary | |
---|---|
Title | New samba packages fix correct sporadic crash |
Informations | |||
---|---|---|---|
Name | DSA-701 | First vendor Publication | 2005-03-31 |
Vendor | Debian | Last vendor Modification | 2005-04-21 |
Severity (Vendor) | N/A | Revision | 2 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
It has been discovered that the last security update for Samba, a LanManager like file and printer server for GNU/Linux and Unix-like systems caused the daemon to crash upon reload. This has been fixed. For reference below is the original advisory text: Greg MacManus discovered an integer overflow in the smb daemon from Samba, a LanManager like file and printer server for GNU/Linux and Unix-like systems. Requesting a very large number of access control descriptors from the server could exploit the integer overflow, which may result in a buffer overflow which could lead to the execution of arbitrary code with root privileges. Upstream developers have discovered more possible integer overflows that are fixed with this update as well. For the stable distribution (woody) these problems have been fixed in version 2.2.3a-15. The version in the unstable distribution (sid) is not affected by this new problem. We recommend that you upgrade your samba packages. |
Original Source
Url : http://www.debian.org/security/2005/dsa-701 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10236 | |||
Oval ID: | oval:org.mitre.oval:def:10236 | ||
Title: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Description: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-1154 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:1459 | |||
Oval ID: | oval:org.mitre.oval:def:1459 | ||
Title: | HP-Samba DACL Remote Integer Overflow Vulnerability (CIFS A.01) | ||
Description: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-1154 | Version: | 1 |
Platform(s): | HP-UX 11 | Product(s): | Samba |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:642 | |||
Oval ID: | oval:org.mitre.oval:def:642 | ||
Title: | HP-Samba DACL Remote Integer Overflow Vulnerability (CIFS A.02) | ||
Description: | Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-1154 | Version: | 3 |
Platform(s): | HP-UX 11 | Product(s): | Samba |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2008-09-24 | Name : Gentoo Security Advisory GLSA 200412-13 (Samba) File : nvt/glsa_200412_13.nasl |
2008-09-04 | Name : FreeBSD Ports: samba, ja-samba File : nvt/freebsd_samba.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 701-1 (samba) File : nvt/deb_701_1.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 701-2 (samba) File : nvt/deb_701_2.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
12422 | Samba smbd Security Descriptor Parsing Remote Overflow |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt RuleID : 4674 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode DACL overflow attempt RuleID : 4673 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx DACL overflow attempt RuleID : 4672 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC DACL overflow attempt RuleID : 4671 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt RuleID : 4670 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode DACL overflow attempt RuleID : 4669 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC andx DACL overflow attempt RuleID : 4668 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC DACL overflow attempt RuleID : 4667 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt RuleID : 4666 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode DACL overflow attempt RuleID : 4665 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx DACL overflow attempt RuleID : 4664 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC DACL overflow attempt RuleID : 4663 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx SACL overflow attempt RuleID : 4662 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode SACL overflow attempt RuleID : 4661 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx SACL overflow attempt RuleID : 4660 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC SACL overflow attempt RuleID : 4659 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode andx SACL overflow attempt RuleID : 4658 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC unicode SACL overflow attempt RuleID : 4657 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC andx SACL overflow attempt RuleID : 4656 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT SET SECURITY DESC SACL overflow attempt RuleID : 4655 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode andx SACL overflow attempt RuleID : 4654 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC unicode SACL overflow attempt RuleID : 4653 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC andx SACL overflow attempt RuleID : 4652 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT SET SECURITY DESC SACL overflow attempt RuleID : 4651 - Revision : 2 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3041-community - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3041 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3040-community - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3040 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx DACL overflow attempt RuleID : 3039-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx DACL overflow attempt RuleID : 3039 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE DACL overflow attempt RuleID : 3038-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE DACL overflow attempt RuleID : 3038 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3037-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx DACL overflow attempt RuleID : 3037 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3036-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode DACL overflow attempt RuleID : 3036 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx DACL overflow attempt RuleID : 3035-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx DACL overflow attempt RuleID : 3035 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE DACL overflow attempt RuleID : 3034-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE DACL overflow attempt RuleID : 3034 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3033-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3033 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3032-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3032 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx SACL overflow attempt RuleID : 3031-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx SACL overflow attempt RuleID : 3031 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE SACL overflow attempt RuleID : 3030-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE SACL overflow attempt RuleID : 3030 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3029-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx SACL overflow attempt RuleID : 3029 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3028-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode SACL overflow attempt RuleID : 3028 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx SACL overflow attempt RuleID : 3027-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx SACL overflow attempt RuleID : 3027 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE SACL overflow attempt RuleID : 3026-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE SACL overflow attempt RuleID : 3026 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3025-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3025 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3024-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3024 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3023-community - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3023 - Revision : 9 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3022-community - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB-DS NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3022 - Revision : 7 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3021-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode andx oversized Security Descriptor attempt RuleID : 3021 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3020-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE unicode oversized Security Descriptor attempt RuleID : 3020 - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3019-community - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE andx oversized Security Descriptor attempt RuleID : 3019 - Revision : 8 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3018-community - Revision : 6 - Type : NETBIOS |
2014-01-10 | SMB NT Trans NT CREATE oversized Security Descriptor attempt RuleID : 3018 - Revision : 6 - Type : NETBIOS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-01-15 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-41-1.nasl - Type : ACT_GATHER_INFO |
2005-07-14 | Name : The remote host is missing Sun Security Patch number 119757-43 File : solaris10_119757.nasl - Type : ACT_GATHER_INFO |
2005-07-14 | Name : The remote host is missing Sun Security Patch number 119758-43 File : solaris10_x86_119758.nasl - Type : ACT_GATHER_INFO |
2005-07-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_3b3676be52e111d9a9e70001020eed82.nasl - Type : ACT_GATHER_INFO |
2005-04-01 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-701.nasl - Type : ACT_GATHER_INFO |
2005-02-03 | Name : The remote host is missing a vendor-supplied security patch File : suse_SA_2004_045.nasl - Type : ACT_GATHER_INFO |
2005-01-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-020.nasl - Type : ACT_GATHER_INFO |
2004-12-28 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2004-158.nasl - Type : ACT_GATHER_INFO |
2004-12-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-561.nasl - Type : ACT_GATHER_INFO |
2004-12-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-562.nasl - Type : ACT_GATHER_INFO |
2004-12-23 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-681.nasl - Type : ACT_GATHER_INFO |
2004-12-19 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200412-13.nasl - Type : ACT_GATHER_INFO |
2004-12-17 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-670.nasl - Type : ACT_GATHER_INFO |
2004-12-16 | Name : Remote code may be run on the remote server. File : samba_dacl_overflow.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:33:58 |
|