DCE-RPC fragment length field is incorrectly checked.

🗓️ 09 Dec 2013 00:00:00Reported by Samba SecurityType

samba

samba🔗 www.samba.org👁 469 Views

DCE-RPC fragment length field vulnerability in Samb

Reporter	Title	Published	Views	Family All 123
IBM Security Bulletins	Security Bulletin: Samba vulnerability issue on IBM Storwize V7000 Unified (CVE-2013-4408 and CVE-2012-6105)	18 Jun 201800:07	–	ibm
IBM Security Bulletins	Security Bulletin: Samba vulnerability issue on SONAS (CVE-2013-4408 and CVE-2012-6105)	18 Jun 201800:07	–	ibm
ALT Linux	Security fix for the ALT Linux 8 package samba-DC version 4.1.3-alt1	9 Dec 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package samba version 4.1.3-alt1	9 Dec 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package samba version 4.1.3-alt1	9 Dec 201300:00	–	altlinux
FreeBSD	samba -- multiple vulnerabilities	12 Jun 201200:00	–	freebsd
Tenable Nessus	Samba < 3.6.22 / 4.0.13 / 4.1.3 Multiple Vulnerabilities	26 Dec 201300:00	–	nessus
Tenable Nessus	CentOS 6 : samba4 (CESA-2013:1805)	10 Dec 201300:00	–	nessus
Tenable Nessus	CentOS 5 / 6 : samba / samba3x (CESA-2013:1806)	10 Dec 201300:00	–	nessus
Tenable Nessus	Debian DSA-2812-1 : samba - several vulnerabilities	10 Dec 201300:00	–	nessus

09 Dec 2013 00:00Current

0.4Low risk

Vulners AI Score0.4

CVSS 28.3

EPSS0.0295

samba dce-rpc buffer overrun winbindd active directory domain denial of service patch vulnerability exploit audit