CVE-2004-0600

2004-07-2704:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.961

Percentile

99.5%

JSON

Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication.

Affected configurations

Nvd

Node

sambasambaMatch3.0.2

sambasambaMatch3.0.2a

sambasambaMatch3.0.3

sambasambaMatch3.0.4

Node

trustixsecure_linuxMatch1.5

trustixsecure_linuxMatch2.0

trustixsecure_linuxMatch2.1

VendorProductVersionCPE
sambasamba3.0.2cpe:2.3:a:samba:samba:3.0.2:*:*:*:*:*:*:*
sambasamba3.0.2acpe:2.3:a:samba:samba:3.0.2a:*:*:*:*:*:*:*
sambasamba3.0.3cpe:2.3:a:samba:samba:3.0.3:*:*:*:*:*:*:*
sambasamba3.0.4cpe:2.3:a:samba:samba:3.0.4:*:*:*:*:*:*:*
trustixsecure_linux1.5cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
trustixsecure_linux2.0cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*
trustixsecure_linux2.1cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
samba	samba	3.0.2	cpe:2.3:a:samba:samba:3.0.2:::::::*
samba	samba	3.0.2a	cpe:2.3:a:samba:samba:3.0.2a:::::::*
samba	samba	3.0.3	cpe:2.3:a:samba:samba:3.0.3:::::::*
samba	samba	3.0.4	cpe:2.3:a:samba:samba:3.0.4:::::::*
trustix	secure_linux	1.5	cpe:2.3:o:trustix:secure_linux:1.5:::::::*
trustix	secure_linux	2.0	cpe:2.3:o:trustix:secure_linux:2.0:::::::*
trustix	secure_linux	2.1	cpe:2.3:o:trustix:secure_linux:2.1:::::::*