CVE-2010-1635

2010-06-1716:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

samba

smbd

cve-2010-1635

denial of service

nvd

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.444 Medium

EPSS

Percentile

97.3%

JSON

The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request with a certain 0x8003 field value.

CPENameOperatorVersion
samba:sambasambaeq3.0.19
samba:sambasambaeq3.0.14a
samba:sambasambaeq3.0.27
samba:sambasambaeq3.0.31
samba:sambasambaeq3.0.3
samba:sambasambaeq3.0.8
samba:sambasambaeq3.2.15
samba:sambasambaeq3.3.3
samba:sambasambaeq3.5.1
samba:sambasambaeq3.0.29

CPE	Name	Operator	Version
samba:samba	samba	eq	3.0.19
samba:samba	samba	eq	3.0.14a
samba:samba	samba	eq	3.0.27
samba:samba	samba	eq	3.0.31
samba:samba	samba	eq	3.0.3
samba:samba	samba	eq	3.0.8
samba:samba	samba	eq	3.2.15
samba:samba	samba	eq	3.3.3
samba:samba	samba	eq	3.5.1
samba:samba	samba	eq	3.0.29