5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.066 Low
EPSS
Percentile
93.7%
The process_logon_packet function in the nmbd server for Samba 3.0.6 and
earlier, when domain logons are enabled, allows remote attackers to cause a
denial of service via a SAM_UAS_CHANGE request with a length value that is
larger than the number of structures that are provided.