Lucene search

RedhatCVE-2007-2447

HistoryMay 14, 2007 - 9:19 p.m.

CVE-2007-2447

2007-05-1421:19:00

redhat

web.nvd.nist.gov

173

cve-2007-2447

samba

remote code execution

ms-rpc

smbd

shell metacharacters

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.753

Percentile

98.2%

JSON

The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the “username map script” smb.conf option is enabled, and allows remote authenticated users to execute commands via shell metacharacters involving other MS-RPC functions in the (2) remote printer and (3) file share management.

Affected configurations

Nvd

Node

sambasambaMatch3.0.0

sambasambaMatch3.0.1

sambasambaMatch3.0.2

sambasambaMatch3.0.2a

sambasambaMatch3.0.3

sambasambaMatch3.0.4

sambasambaMatch3.0.4rc1

sambasambaMatch3.0.5

sambasambaMatch3.0.6

sambasambaMatch3.0.7

sambasambaMatch3.0.8

sambasambaMatch3.0.9

sambasambaMatch3.0.10

sambasambaMatch3.0.11

sambasambaMatch3.0.12

sambasambaMatch3.0.13

sambasambaMatch3.0.14

sambasambaMatch3.0.14a

sambasambaMatch3.0.15

sambasambaMatch3.0.16

sambasambaMatch3.0.17

sambasambaMatch3.0.18

sambasambaMatch3.0.19

sambasambaMatch3.0.20

sambasambaMatch3.0.20a

sambasambaMatch3.0.20b

sambasambaMatch3.0.21

sambasambaMatch3.0.21a

sambasambaMatch3.0.21b

sambasambaMatch3.0.21c

sambasambaMatch3.0.22

sambasambaMatch3.0.23

sambasambaMatch3.0.23a

sambasambaMatch3.0.23b

sambasambaMatch3.0.23c

sambasambaMatch3.0.23d

sambasambaMatch3.0.24

sambasambaMatch3.0.25pre1

sambasambaMatch3.0.25pre2

sambasambaMatch3.0.25rc1

sambasambaMatch3.0.25rc2

sambasambaMatch3.0.25rc3

VendorProductVersionCPE
sambasamba3.0.0cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*
sambasamba3.0.1cpe:2.3:a:samba:samba:3.0.1:*:*:*:*:*:*:*
sambasamba3.0.2cpe:2.3:a:samba:samba:3.0.2:*:*:*:*:*:*:*
sambasamba3.0.2acpe:2.3:a:samba:samba:3.0.2a:*:*:*:*:*:*:*
sambasamba3.0.3cpe:2.3:a:samba:samba:3.0.3:*:*:*:*:*:*:*
sambasamba3.0.4cpe:2.3:a:samba:samba:3.0.4:*:*:*:*:*:*:*
sambasamba3.0.4cpe:2.3:a:samba:samba:3.0.4:rc1:*:*:*:*:*:*
sambasamba3.0.5cpe:2.3:a:samba:samba:3.0.5:*:*:*:*:*:*:*
sambasamba3.0.6cpe:2.3:a:samba:samba:3.0.6:*:*:*:*:*:*:*
sambasamba3.0.7cpe:2.3:a:samba:samba:3.0.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
samba	samba	3.0.0	cpe:2.3:a:samba:samba:3.0.0:::::::*
samba	samba	3.0.1	cpe:2.3:a:samba:samba:3.0.1:::::::*
samba	samba	3.0.2	cpe:2.3:a:samba:samba:3.0.2:::::::*
samba	samba	3.0.2a	cpe:2.3:a:samba:samba:3.0.2a:::::::*
samba	samba	3.0.3	cpe:2.3:a:samba:samba:3.0.3:::::::*
samba	samba	3.0.4	cpe:2.3:a:samba:samba:3.0.4:::::::*
samba	samba	3.0.4	cpe:2.3:a:samba:samba:3.0.4:rc1::::::
samba	samba	3.0.5	cpe:2.3:a:samba:samba:3.0.5:::::::*
samba	samba	3.0.6	cpe:2.3:a:samba:samba:3.0.6:::::::*
samba	samba	3.0.7	cpe:2.3:a:samba:samba:3.0.7:::::::*

Rows per page:

1-10 of 421

References

docs.info.apple.com/article.html?artnum=306172

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01067768

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01078980

labs.idefense.com/intelligence/vulnerabilities/display.php?id=534

lists.apple.com/archives/security-announce//2007/Jul/msg00004.html

lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html

lists.suse.com/archive/suse-security-announce/2007-May/0006.html

secunia.com/advisories/25232

secunia.com/advisories/25241

secunia.com/advisories/25246

secunia.com/advisories/25251

secunia.com/advisories/25255

secunia.com/advisories/25256

secunia.com/advisories/25257

secunia.com/advisories/25259

secunia.com/advisories/25270

secunia.com/advisories/25289

secunia.com/advisories/25567

secunia.com/advisories/25675

secunia.com/advisories/25772

secunia.com/advisories/26083

secunia.com/advisories/26235

secunia.com/advisories/26909

secunia.com/advisories/27706

secunia.com/advisories/28292

security.gentoo.org/glsa/glsa-200705-15.xml

securityreason.com/securityalert/2700

slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.475906

sunsolve.sun.com/search/document.do?assetkey=1-26-102964-1

sunsolve.sun.com/search/document.do?assetkey=1-66-200588-1

www.debian.org/security/2007/dsa-1291

www.kb.cert.org/vuls/id/268336

www.mandriva.com/security/advisories?name=MDKSA-2007:104

www.novell.com/linux/security/advisories/2007_14_sr.html

www.openpkg.com/security/advisories/OpenPKG-SA-2007.012.html

www.osvdb.org/34700

www.redhat.com/support/errata/RHSA-2007-0354.html

www.samba.org/samba/security/CVE-2007-2447.html

www.securityfocus.com/archive/1/468565/100/0/threaded

www.securityfocus.com/archive/1/468670/100/0/threaded

www.securityfocus.com/bid/23972

www.securityfocus.com/bid/25159

www.securitytracker.com/id?1018051

www.trustix.org/errata/2007/0017/

www.ubuntu.com/usn/usn-460-1

www.vupen.com/english/advisories/2007/1805

www.vupen.com/english/advisories/2007/2079

www.vupen.com/english/advisories/2007/2210

www.vupen.com/english/advisories/2007/2281

www.vupen.com/english/advisories/2007/2732

www.vupen.com/english/advisories/2007/3229

www.vupen.com/english/advisories/2008/0050

www.xerox.com/downloads/usa/en/c/cert_XRX08_001.pdf

issues.rpath.com/browse/RPL-1366

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10062

Social References

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.753

Percentile

98.2%

JSON

CVE-2007-2447

Affected configurations

References

Social References

Related