9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.059 Low
EPSS
Percentile
93.4%
Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when
configured as a Primary or Backup Domain controller, allows remote
attackers to have an unknown impact via crafted GETDC mailslot requests,
related to handling of GETDC logon server requests.
Author | Note |
---|---|
jdstrand | believed by upstream to be unexploitable Debian 3.0.24-6etch8 should be regression free (check earlier versions too) suse has most complete fix |