Computer Security
[EN] securityvulns.ru no-pyccku


Samba multiple security vulnerabilities
Published:16.11.2007
Source:
SecurityVulns ID:8349
Type:remote
Threat Level:
7/10
Description:Buffer overflow in GETDC mailslot request processing, buffer overflow in WINS server. Client IP may be spoofed.
Affected:SAMBA : Samba 3.0
CVE:CVE-2007-5398
 CVE-2007-4572 (Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests.)
Original documentdocumentSECUNIA, Secunia Research: Samba "reply_netbios_packet()" Buffer Overflow Vulnerability (16.11.2007)
 documentSAMBA, [SAMBA] CVE-2007-5398 - Remote Code Execution in Samba's nmbd (16.11.2007)
 documentSAMBA, [SAMBA] CVE-2007-4572 - GETDC mailslot processing buffer overrun in nmbd (16.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod