Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD2DE14F7A-DAD9-11D8-B59A-00061BC2AD93
HistoryJul 14, 2004 - 12:00 a.m.

Multiple Potential Buffer Overruns in Samba

2004-07-1400:00:00
vuxml.freebsd.org
11

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.964 High

EPSS

Percentile

99.6%

JSON

Evgeny Demidov discovered that the Samba server has a
buffer overflow in the Samba Web Administration Tool (SWAT)
on decoding Base64 data during HTTP Basic Authentication.
Versions 3.0.2 through 3.0.4 are affected.
Another buffer overflow bug has been found in the code
used to support the “mangling method = hash” smb.conf
option. The default setting for this parameter is “mangling
method = hash2” and therefore not vulnerable. Versions
between 2.2.0 through 2.2.9 and 3.0.0 through 3.0.4 are affected.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchsamba< 3.0.5UNKNOWN
FreeBSDanynoarchja-samba< 2.2.10.j1.0UNKNOWN

Related

redhat 2
openvas 12
nessus 11
gentoo 1
slackware 1
securityvulns 2
suse 1
debiancve 2
cvelist 2
cve 2
nvd 2
samba 2
packetstorm 1
checkpoint_advisories 1
redhat
redhat
(RHSA-2004:259) samba security update
2004-07-22 00:00:00
(RHSA-2004:404) samba security update
2004-07-26 00:00:00
openvas
openvas
FreeBSD Ports: samba
2008-09-04 00:00:00
Slackware Advisory SSA:2004-207-01 new samba packages
2012-09-11 00:00:00
FreeBSD Ports: samba
2008-09-04 00:00:00
nessus
nessus
FreeBSD : Multiple Potential Buffer Overruns in Samba (2de14f7a-dad9-11d8-b59a-00061bc2ad93)
2009-04-23 00:00:00
RHEL 3 : samba (RHSA-2004:259)
2004-07-22 00:00:00
SUSE-SA:2004:022: samba
2004-07-25 00:00:00
gentoo
gentoo
Samba: Multiple buffer overflows
2004-07-29 00:00:00
slackware
slackware
new samba packages
2004-07-25 20:24:19
securityvulns
securityvulns
[security bulletin] SSRT4782 rev. 0 HP-UX CIFS Server potential remote root access
2004-07-28 00:00:00
Security Release - Samba 3.0.5 and 2.2.10
2004-07-23 00:00:00
suse
suse
remote root compromise in samba
2004-07-23 11:20:42
debiancve
debiancve
CVE-2004-0600
2004-07-27 04:00:00
CVE-2004-0686
2004-07-27 04:00:00
cvelist
cvelist
CVE-2004-0600
2004-07-23 04:00:00
CVE-2004-0686
2004-07-23 04:00:00
cve
cve
CVE-2004-0600
2004-07-27 04:00:00
CVE-2004-0686
2004-07-27 04:00:00
nvd
nvd
CVE-2004-0600
2004-07-27 04:00:00
CVE-2004-0686
2004-07-27 04:00:00
samba
samba
Potential Buffer Overrun in smbd
2004-07-22 00:00:00
Potential Buffer Overrun in SWAT
2004-07-22 00:00:00
packetstorm
packetstorm
sambaPoC.txt
2004-07-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Samba SWAT HTTP Authentication Buffer Overflow (CVE-2004-0600)
2009-10-27 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.964 High

EPSS

Percentile

99.6%

JSON
Related for 2DE14F7A-DAD9-11D8-B59A-00061BC2AD93
redhat2openvas12nessus11gentoo1slackware1securityvulns2suse1debiancve2cvelist2cve2nvd2samba2packetstorm1checkpoint_advisories1