The Samba Web Administration Tool (SWAT) was found vulnerable to a buffer overflow in its base64 code. This buffer overflow can possibly be exploited remotely before any authentication took place to execute arbitrary code. The same piece of vulnerable code was also used in ldapsam passdb and in the ntlm_auth tool. This vulnerability only exists on Samba 3.0.2 to 3.0.4.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 8.2 | i586 | libsmbclient-devel | < 2.2.8a-220 | libsmbclient-devel-2.2.8a-220.i586.rpm |
openSUSE | 9.1 | x86_64 | samba-python | < 3.0.4-1.27 | samba-python-3.0.4-1.27.x86_64.rpm |
openSUSE | 9.1 | x86_64 | libsmbclient-devel | < 3.0.4-1.27 | libsmbclient-devel-3.0.4-1.27.x86_64.rpm |
openSUSE | 9.0 | i586 | libsmbclient | < 2.2.8a-220 | libsmbclient-2.2.8a-220.i586.rpm |
openSUSE | 9.1 | x86_64 | samba-doc | < 3.0.4-1.12 | samba-doc-3.0.4-1.12.x86_64.rpm |
openSUSE | 9.0 | x86_64 | libsmbclient | < 2.2.8a-220 | libsmbclient-2.2.8a-220.x86_64.rpm |
openSUSE | 9.1 | i586 | samba-client | < 3.0.4-1.27 | samba-client-3.0.4-1.27.i586.rpm |
openSUSE | 8.2 | i586 | samba-doc | < 2.2.8a-220 | samba-doc-2.2.8a-220.i586.rpm |
openSUSE | 9.1 | x86_64 | samba-winbind | < 3.0.4-1.27 | samba-winbind-3.0.4-1.27.x86_64.rpm |
openSUSE | 9.1 | i586 | samba-winbind | < 3.0.4-1.27 | samba-winbind-3.0.4-1.27.i586.rpm |