CVE-2010-1635

2010-06-17T16:30:00
ID CVE-2010-1635
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:25:00

Description

The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request with a certain 0x8003 field value. Per: http://cwe.mitre.org/data/definitions/476.html

'NULL Pointer Dereference'