Lucene search
SAINT CorporationSAINT:85D8FA14816A177813ABE4DD366C47F4HistoryJun 02, 2006 - 12:00 a.m.
Samba call_trans2open buffer overflow
2006-06-0200:00:00
SAINT Corporation
www.saintcorporation.com
76
EPSS
0.971
Percentile
99.8%
Added: 06/02/2006
CVE: CVE-2003-0201
BID: 7294
OSVDB: 4469
Background
Samba is a software package which implements the SMB protocol on a variety of platforms, providing compatibility with Windows systems.
Problem
A buffer overflow in the **call_trans2open** function allows anonymous remote attackers to execute arbitrary commands.
Resolution
Upgrade to Samba 2.2.8a or higher.
References
<http://www.kb.cert.org/vuls/id/267873>
<http://archives.neohapsis.com/archives/bugtraq/2003-04/0100.html>
Limitations
Exploit works on Samba 2.2.x.
Platforms
Linux
FreeBSD
SunOS / SunOS 5 / SunOS 5.9 / Solaris 9
SunOS / SunOS 5 / SunOS 5.7 / SunOS 5.8 / Solaris 7 / Solaris 8
SunOS / SunOS 5 / SunOS 5.6 / Solaris 2.6
Mac OS
Related
checkpoint_advisories
checkpoint_advisories
Samba Trans2 Open2 Buffer Overflow - Ver2 (CVE-2003-0201)
2014-04-16 00:00:00
saint
saint
Samba call_trans2open buffer overflow
2006-06-02 00:00:00
Samba call_trans2open buffer overflow
2006-06-02 00:00:00
Samba call_trans2open buffer overflow
2006-06-02 00:00:00
exploitdb
exploitdb
Samba 2.2.0 < 2.2.8 (OSX) - trans2open Overflow (Metasploit)
2003-04-07 00:00:00
Samba < 2.2.8 (Linux/BSD) - Remote Code Execution
2003-04-10 00:00:00
Samba 2.2.8 (BSD x86) - 'trans2open' Remote Overflow (Metasploit)
2010-06-17 00:00:00
metasploit
metasploit
Samba trans2open Overflow (Linux x86)
2010-06-12 04:28:01
Samba trans2open Overflow (*BSD x86)
2010-06-15 05:45:43
Samba trans2open Overflow (Mac OS X PPC)
2006-09-18 00:30:29
cvelist
cvelist
seebug
seebug
Samba 2.2.0 - 2.2.8 trans2open Overflow (OS X)
2003-04-07 00:00:00
nvd
nvd
suse
suse
remote root access in samba
2003-04-07 20:29:18
packetstorm
packetstorm
Samba trans2open Overflow (Mac OS X)
2009-12-31 00:00:00
Samba trans2open Overflow
2009-10-28 00:00:00
Samba trans2open Overflow (Solaris SPARC)
2009-12-31 00:00:00
nessus
nessus
SUSE-SA:2003:025: samba
2004-07-25 00:00:00
Samba < 2.2.8a / 3.0.0 Multiple Remote Overflows
2003-04-07 00:00:00
RHEL 2.1 : samba (RHSA-2003:138)
2004-07-06 00:00:00
canvas
canvas
Immunity Canvas: SAMBA_TRANS2
2003-05-05 04:00:00
slackware
slackware
Samba security problem fixed
2003-04-07 15:50:22
debiancve
debiancve
cve
cve
debian
debian
[SECURITY] [DSA 280-1] New samba packages fix remote root exploit
2003-04-07 18:48:54
[SECURITY] [DSA 280-1] New samba packages fix remote root exploit
2003-04-07 18:48:54
osv
osv
samba - buffer overflow
2003-04-07 00:00:00
openvas
openvas
Debian Security Advisory DSA 280-1 (samba)
2008-01-17 00:00:00
Samba 2.0.0 <= 2.2.8 Multiple Vulnerabilities
2021-09-24 00:00:00
Debian Security Advisory DSA 280-1 (samba)
2008-01-17 00:00:00
redhat
redhat
(RHSA-2003:138) samba security update
2003-04-07 00:00:00
cert
cert
Samba contains multiple buffer overflows
2003-04-10 00:00:00
Samba contains a remotely exploitable stack buffer overflow
2002-12-13 00:00:00
Samba contains buffer overflow in SMB/CIFS packet fragment reassembly code
2003-03-17 00:00:00
trendmicroblog
trendmicroblog