Lucene search
GoogleOSV:DSA-1291-2HistoryMay 15, 2007 - 12:00 a.m.
samba
2007-05-1500:00:00
Google
osv.dev
16
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.7%
Several issues have been identified in Samba, the SMB/CIFS
file- and print-server implementation for GNU/Linux.
- CVE-2007-2444
When translating SIDs to/from names using Samba local list of user and
group accounts, a logic error in the smbd daemon’s internal security
stack may result in a transition to the root user id rather than the
non-root user. The user is then able to temporarily issue SMB/CIFS
protocol operations as the root user. This window of opportunity may
allow the attacker to establish addition means of gaining root access to
the server. - CVE-2007-2446
Various bugs in Samba’s NDR parsing can allow a user to send specially
crafted MS-RPC requests that will overwrite the heap space with user
defined data. - CVE-2007-2447
Unescaped user input parameters are passed as arguments to /bin/sh
allowing for remote command execution.
For the stable distribution (etch), these problems have been fixed in
version 3.0.24-6etch1.
For the testing and unstable distributions (lenny and sid,
respectively), these problems have been fixed in version 3.0.25-1.
We recommend that you upgrade your samba package.
| CPE | Name | Operator | Version |
|---|---|---|---|
| samba | eq | 3.0.14a-3 | |
| samba | eq | 3.0.14a-3sarge1 | |
| samba | eq | 3.0.14a-3sarge2 | |
| samba | eq | 3.0.14a-3sarge3 | |
| samba | eq | 3.0.14a-3sarge4 |
References
Related
debian
debian
[SECURITY] [DSA 1291-3] New samba packages fix regression
2007-05-21 19:12:31
[SECURITY] [DSA 1291-4] New samba packages fix regression
2007-06-04 19:37:12
[SECURITY] [DSA 1291-1] New samba packages fix multiple vulnerabilities
2007-05-15 17:34:53
nessus
nessus
Mandrake Linux Security Advisory : samba (MDKSA-2007:104-1)
2007-05-16 00:00:00
Slackware 10.0 / 10.1 / 10.2 / 11.0 / current : samba (SSA:2007-134-01)
2007-05-16 00:00:00
GLSA-200705-15 : Samba: Multiple vulnerabilities
2007-05-16 00:00:00
openvas
openvas
Slackware Advisory SSA:2007-134-01 samba
2012-09-11 00:00:00
Mandriva Update for samba MDKSA-2007:104 (samba)
2009-04-09 00:00:00
FreeBSD Ports: samba, ja-samba
2008-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: samba-3.0.24-5.fc6
2007-05-14 17:22:17
[SECURITY] Fedora Core 5 Update: samba-3.0.24-5.fc5
2007-05-14 17:21:19
slackware
slackware
[slackware-security] samba
2007-05-15 03:03:31
gentoo
gentoo
Samba: Multiple vulnerabilities
2007-05-15 00:00:00
ubuntu
ubuntu
Samba vulnerabilities
2007-05-16 00:00:00
Samba regression
2007-05-22 00:00:00
securityvulns
securityvulns
Samba file server multiple security vulnerabilities
2007-05-16 00:00:00
[SAMBA-SECURITY] CVE-2007-2447: Remote Command Injection Vulnerability
2007-05-15 00:00:00
ZDI-07-033: Samba lsa_io_trans_names Heap Overflow Vulnerability
2007-05-16 00:00:00
suse
suse
remote code execution in samba
2007-05-22 14:13:43
altlinux
altlinux
Security fix for the ALT Linux 5 package samba version 3.0.25-alt1
2007-05-14 00:00:00
freebsd
freebsd
samba -- multiple vulnerabilities
2007-05-14 00:00:00
oraclelinux
oraclelinux
Critical: samba security update
2007-05-14 00:00:00
samba security and bug fix update
2009-10-27 00:00:00
redhat
redhat
(RHSA-2007:0354) Critical: samba security update
2007-05-14 00:00:00
centos
centos
samba security update
2007-05-14 17:11:04
samba security update
2007-05-14 23:38:47
prion
prion
metasploit
metasploit
Samba "username map script" Command Execution
2010-02-16 00:26:41
packetstorm
packetstorm
Samba "username map script" Command Execution
2010-02-17 00:00:00
lsa_transnames_heap-osx.rb.txt
2007-07-26 00:00:00
lsa_transnames_heap-linux.rb.txt
2007-07-26 00:00:00
samba
samba
Remote Command Injection Vulnerability
2007-05-14 00:00:00
Local SID/Name translation bug can result
2007-05-14 00:00:00
Multiple Heap Overflows Allow Remote
2007-05-14 00:00:00
debiancve
debiancve
ubuntucve
ubuntucve
canvas
canvas
Immunity Canvas: ASUS_SAMBA
2007-05-14 17:19:00
Immunity Canvas: SOLARIS_SAMBA
2007-05-14 21:19:00
zdi
zdi
Samba sec_io_acl Heap Overflow Vulnerability
2007-07-11 00:00:00
Samba netdfs_io_dfs_EnumInfo_d Heap Overflow Vulnerability
2007-07-11 00:00:00
Samba smb_io_notify_option_type_data Heap Overflow Vulnerability
2007-07-11 00:00:00
cve
cve
checkpoint_advisories
checkpoint_advisories
saint
saint
Samba lsa_io_trans_names buffer overflow
2007-12-24 00:00:00
Samba lsa_io_trans_names buffer overflow
2007-12-24 00:00:00
Samba lsa_io_trans_names buffer overflow
2007-12-24 00:00:00
seebug
seebug
Samba "username map script" Command Execution
2014-07-01 00:00:00
Mac OS X 2007-007更新修复多个安全漏洞
2007-08-02 00:00:00
cert
cert
Samba command injection vulnerability
2007-05-14 00:00:00
Samba NDR MS-RPC heap buffer overflow
2007-05-14 00:00:00
exploitdb
exploitdb
redhatcve
redhatcve
CVE-2007-4044
2015-10-30 10:29:07
avleonov
avleonov
Vulnerability Management at Tinkoff Fintech School
2019-03-04 10:38:31
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.7%
Related for OSV:DSA-1291-2