Lucene search

[email protected]NVD:CVE-2007-0453

HistoryFeb 06, 2007 - 2:28 a.m.

CVE-2007-0453

2007-02-0602:28:00

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.001

Percentile

47.5%

JSON

Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 through 3.0.23d, as used in the winbindd daemon on Solaris, allows attackers to execute arbitrary code via the (1) gethostbyname and (2) getipnodebyname functions.

Affected configurations

Nvd

Node

sambasambaMatch3.0.21

sambasambaMatch3.0.21a

sambasambaMatch3.0.21b

sambasambaMatch3.0.21c

sambasambaMatch3.0.22

sambasambaMatch3.0.23

sambasambaMatch3.0.23a

sambasambaMatch3.0.23b

sambasambaMatch3.0.23c

sambasambaMatch3.0.23d

References

osvdb.org/33098

secunia.com/advisories/24043

secunia.com/advisories/24101

secunia.com/advisories/24151

securitytracker.com/id?1017589

slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.476916

us1.samba.org/samba/security/CVE-2007-0453.html

www.openpkg.com/security/advisories/OpenPKG-SA-2007.012.html

www.securityfocus.com/archive/1/459168/100/0/threaded

www.securityfocus.com/archive/1/459365/100/0/threaded

www.securityfocus.com/bid/22410

www.trustix.org/errata/2007/0007

www.vupen.com/english/advisories/2007/0483

exchange.xforce.ibmcloud.com/vulnerabilities/32231

issues.rpath.com/browse/RPL-1005

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.001

Percentile

47.5%

JSON

Related for NVD:CVE-2007-0453

securityvulns2 ubuntucve1 cvelist1 redhatcve1 samba1 seebug1 prion1 cve1 debiancve1 openvas3 suse1 nessus2 slackware1