Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2007-4044
HistoryOct 30, 2015 - 10:29 a.m.

CVE-2007-4044

2015-10-3010:29:07
redhat.com
access.redhat.com
2

6.6 Medium

AI Score

Confidence

Low

6 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

0.751 High

EPSS

Percentile

98.1%

JSON

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: The MS-RPC functionality in smbd in Samba 3 on SUSE Linux before 20070720 does not include “one character in the shell escape handling.” NOTE: this issue was originally characterized as a shell metacharacter issue due to an incomplete fix for CVE-2007-2447, which was interpreted by CVE to be security relevant. However, SUSE and Red Hat have disputed the problem, stating that the only impact is that scripts will not be executed if they have a “c” in their name, but even this limitation might not exist. This does not have security implications, so should not be included in CVE

Related

cve 2
prion 2
nessus 23
metasploit 1
securityvulns 4
openvas 56
packetstorm 1
debiancve 1
samba 1
seebug 2
ubuntucve 1
cert 1
exploitdb 1
redhat 1
debian 6
centos 2
oraclelinux 2
fedora 2
ubuntu 1
gentoo 1
slackware 1
suse 1
osv 1
altlinux 1
freebsd 1
avleonov 1
vmware 1
cve
cve
CVE-2007-4044
2007-07-27 22:30:00
CVE-2007-2447
2007-05-14 21:19:00
prion
prion
Design/Logic Flaw
2007-07-27 22:30:00
Code injection
2007-05-14 21:19:00
nessus
nessus
openSUSE 10 Security Update : samba (samba-3828)
2007-10-17 00:00:00
SuSE 10 Security Update : Samba (ZYPP Patch Number 3829)
2007-12-13 00:00:00
openSUSE 10 Security Update : samba (samba-3827)
2007-10-17 00:00:00
metasploit
metasploit
Samba "username map script" Command Execution
2010-02-16 00:26:41
securityvulns
securityvulns
iDefense Security Advisory 05.14.07: Samba SAMR Change Password Remote Command Injection Vulnerability
2007-05-15 00:00:00
[SAMBA-SECURITY] CVE-2007-2447: Remote Command Injection Vulnerability
2007-05-15 00:00:00
Samba file server multiple security vulnerabilities
2007-05-16 00:00:00
openvas
openvas
SLES9: Security update for Samba
2009-10-10 00:00:00
SLES9: Security update for Samba
2009-10-10 00:00:00
Samba MS-RPC Remote Shell Command Execution Vulnerability - Active Check
2016-10-31 00:00:00
packetstorm
packetstorm
Samba "username map script" Command Execution
2010-02-17 00:00:00
debiancve
debiancve
CVE-2007-2447
2007-05-14 21:19:00
samba
samba
Remote Command Injection Vulnerability
2007-05-14 00:00:00
seebug
seebug
Samba "username map script" Command Execution
2014-07-01 00:00:00
Mac OS X 2007-007更新修复多个安全漏洞
2007-08-02 00:00:00
ubuntucve
ubuntucve
CVE-2007-2447
2007-05-14 00:00:00
cert
cert
Samba command injection vulnerability
2007-05-14 00:00:00
exploitdb
exploitdb
Samba 3.0.20 < 3.0.25rc3 - 'Username' map script' Command Execution (Metasploit)
2010-08-18 00:00:00
redhat
redhat
(RHSA-2007:0354) Critical: samba security update
2007-05-14 00:00:00
debian
debian
[SECURITY] [DSA 1291-2] New samba packages fix multiple vulnerabilities
2007-05-17 12:29:25
[SECURITY] [DSA 1291-2] New samba packages fix multiple vulnerabilities
2007-05-17 12:29:25
[SECURITY] [DSA 1291-4] New samba packages fix regression
2007-06-04 19:37:12
centos
centos
samba security update
2007-05-14 17:11:04
samba security update
2007-05-14 23:38:47
oraclelinux
oraclelinux
Critical: samba security update
2007-05-14 00:00:00
samba security and bug fix update
2009-10-27 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: samba-3.0.24-5.fc6
2007-05-14 17:22:17
[SECURITY] Fedora Core 5 Update: samba-3.0.24-5.fc5
2007-05-14 17:21:19
ubuntu
ubuntu
Samba vulnerabilities
2007-05-16 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2007-05-15 00:00:00
slackware
slackware
[slackware-security] samba
2007-05-15 03:03:31
suse
suse
remote code execution in samba
2007-05-22 14:13:43
osv
osv
samba
2007-05-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package samba version 3.0.25-alt1
2007-05-14 00:00:00
freebsd
freebsd
samba -- multiple vulnerabilities
2007-05-14 00:00:00
avleonov
avleonov
Vulnerability Management at Tinkoff Fintech School
2019-03-04 10:38:31
vmware
vmware
Updated versions of all supported hosted products and all ESX 2x products and patches for ESX 30x address critical security updates. Service Console security updates for samba, bind, krb5, vixie-cron, shadow-utils, openldap, pam, gcc, and gdb packages.
2007-09-18 00:00:00

6.6 Medium

AI Score

Confidence

Low

6 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

0.751 High

EPSS

Percentile

98.1%

JSON
Related for RH:CVE-2007-4044
cve2prion2nessus23metasploit1securityvulns4openvas56packetstorm1debiancve1samba1seebug2ubuntucve1cert1exploitdb1redhat1debian6centos2oraclelinux2fedora2ubuntu1gentoo1slackware1suse1osv1altlinux1freebsd1avleonov1vmware1