Vulnerabilites related to hp - cifs-9000_server
cve-2001-0981
Vulnerability from cvelistv5
Published
2002-06-25 04:00
Modified
2024-08-08 04:37
Severity ?
EPSS score ?
Summary
HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.
References
| ▼ | URL | Tags |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/7051 | vdb-entry, x_refsource_XF | |
| http://archives.neohapsis.com/archives/hp/2001-q3/0048.html | vendor-advisory, x_refsource_HP |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T04:37:07.113Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "hp-cifs-change-passwords(7051)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051", }, { name: "HPSBUX0108-164", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2001-08-28T00:00:00", descriptions: [ { lang: "en", value: "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2002-06-16T00:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "hp-cifs-change-passwords(7051)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051", }, { name: "HPSBUX0108-164", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2001-0981", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "hp-cifs-change-passwords(7051)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051", }, { name: "HPSBUX0108-164", refsource: "HP", url: "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2001-0981", datePublished: "2002-06-25T04:00:00", dateReserved: "2002-01-31T00:00:00", dateUpdated: "2024-08-08T04:37:07.113Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2002-1318
Vulnerability from cvelistv5
Published
2004-09-01 04:00
Modified
2024-08-08 03:19
Severity ?
EPSS score ?
Summary
Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T03:19:28.632Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "oval:org.mitre.oval:def:1467", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467", }, { name: "VU#958321", tags: [ "third-party-advisory", "x_refsource_CERT-VN", "x_transferred", ], url: "http://www.kb.cert.org/vuls/id/958321", }, { name: "CLA-2002:550", tags: [ "vendor-advisory", "x_refsource_CONECTIVA", "x_transferred", ], url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550", }, { name: "samba-password-change-bo(10683)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683", }, { name: "SuSE-SA:2002:045", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://www.novell.com/linux/security/advisories/2002_045_samba.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html", }, { name: "20021121 GLSA: samba", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=103801986818076&w=2", }, { name: "DSA-200", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2002/dsa-200", }, { name: "HPSBUX0212-230", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { name: "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=103859045302448&w=2", }, { name: "N-019", tags: [ "third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred", ], url: "http://www.ciac.org/ciac/bulletins/n-019.shtml", }, { name: "6210", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/6210", }, { name: "RHSA-2002:266", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2002-266.html", }, { name: "53580", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580", }, { name: "20021204-01-I", tags: [ "vendor-advisory", "x_refsource_SGI", "x_transferred", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I", }, { name: "N-023", tags: [ "third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred", ], url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { name: "MDKSA-2002:081", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", "x_transferred", ], url: "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2002-11-20T00:00:00", descriptions: [ { lang: "en", value: "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2004-08-04T00:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "oval:org.mitre.oval:def:1467", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467", }, { name: "VU#958321", tags: [ "third-party-advisory", "x_refsource_CERT-VN", ], url: "http://www.kb.cert.org/vuls/id/958321", }, { name: "CLA-2002:550", tags: [ "vendor-advisory", "x_refsource_CONECTIVA", ], url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550", }, { name: "samba-password-change-bo(10683)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683", }, { name: "SuSE-SA:2002:045", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://www.novell.com/linux/security/advisories/2002_045_samba.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html", }, { name: "20021121 GLSA: samba", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=103801986818076&w=2", }, { name: "DSA-200", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2002/dsa-200", }, { name: "HPSBUX0212-230", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { name: "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=103859045302448&w=2", }, { name: "N-019", tags: [ "third-party-advisory", "government-resource", "x_refsource_CIAC", ], url: "http://www.ciac.org/ciac/bulletins/n-019.shtml", }, { name: "6210", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/6210", }, { name: "RHSA-2002:266", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2002-266.html", }, { name: "53580", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580", }, { name: "20021204-01-I", tags: [ "vendor-advisory", "x_refsource_SGI", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I", }, { name: "N-023", tags: [ "third-party-advisory", "government-resource", "x_refsource_CIAC", ], url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { name: "MDKSA-2002:081", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", ], url: "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2002-1318", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "oval:org.mitre.oval:def:1467", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467", }, { name: "VU#958321", refsource: "CERT-VN", url: "http://www.kb.cert.org/vuls/id/958321", }, { name: "CLA-2002:550", refsource: "CONECTIVA", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550", }, { name: "samba-password-change-bo(10683)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683", }, { name: "SuSE-SA:2002:045", refsource: "SUSE", url: "http://www.novell.com/linux/security/advisories/2002_045_samba.html", }, { name: "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html", refsource: "CONFIRM", url: "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html", }, { name: "20021121 GLSA: samba", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=103801986818076&w=2", }, { name: "DSA-200", refsource: "DEBIAN", url: "http://www.debian.org/security/2002/dsa-200", }, { name: "HPSBUX0212-230", refsource: "HP", url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { name: "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=103859045302448&w=2", }, { name: "N-019", refsource: "CIAC", url: "http://www.ciac.org/ciac/bulletins/n-019.shtml", }, { name: "6210", refsource: "BID", url: "http://www.securityfocus.com/bid/6210", }, { name: "RHSA-2002:266", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2002-266.html", }, { name: "53580", refsource: "SUNALERT", url: "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580", }, { name: "20021204-01-I", refsource: "SGI", url: "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I", }, { name: "N-023", refsource: "CIAC", url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { name: "MDKSA-2002:081", refsource: "MANDRAKE", url: "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2002-1318", datePublished: "2004-09-01T04:00:00", dateReserved: "2002-11-25T00:00:00", dateUpdated: "2024-08-08T03:19:28.632Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2003-0085
Vulnerability from cvelistv5
Published
2003-03-18 05:00
Modified
2024-08-08 01:43
Severity ?
EPSS score ?
Summary
Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T01:43:36.004Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "20030317 Security Bugfix for Samba - Samba 2.2.8 Released", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104792723017768&w=2", }, { name: "20030317 GLSA: samba (200303-11)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104792646416629&w=2", }, { name: "GLSA-200303-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml", }, { name: "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { name: "APPLE-SA-2003-03-24", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { name: "RHSA-2003:096", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2003-096.html", }, { name: "oval:org.mitre.oval:def:552", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552", }, { name: "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104801012929374&w=2", }, { name: "7106", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/7106", }, { name: "RHSA-2003:095", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2003-095.html", }, { name: "VU#298233", tags: [ "third-party-advisory", "x_refsource_CERT-VN", "x_transferred", ], url: "http://www.kb.cert.org/vuls/id/298233", }, { name: "SuSE-SA:2003:016", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://www.novell.com/linux/security/advisories/2003_016_samba.html", }, { name: "MDKSA-2003:032", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032", }, { name: "IMNX-2003-7+-003-01", tags: [ "vendor-advisory", "x_refsource_IMMUNIX", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { name: "DSA-262", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2003/dsa-262", }, { name: "20030401 Immunix Secured OS 7+ samba update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { name: "8303", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/8303", }, { name: "20030302-01-I", tags: [ "vendor-advisory", "x_refsource_SGI", "x_transferred", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I", }, { name: "8299", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/8299", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2003-03-15T00:00:00", descriptions: [ { lang: "en", value: "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-10-19T14:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "20030317 Security Bugfix for Samba - Samba 2.2.8 Released", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104792723017768&w=2", }, { name: "20030317 GLSA: samba (200303-11)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104792646416629&w=2", }, { name: "GLSA-200303-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml", }, { name: "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { name: "APPLE-SA-2003-03-24", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { name: "RHSA-2003:096", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2003-096.html", }, { name: "oval:org.mitre.oval:def:552", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552", }, { name: "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104801012929374&w=2", }, { name: "7106", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/7106", }, { name: "RHSA-2003:095", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2003-095.html", }, { name: "VU#298233", tags: [ "third-party-advisory", "x_refsource_CERT-VN", ], url: "http://www.kb.cert.org/vuls/id/298233", }, { name: "SuSE-SA:2003:016", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://www.novell.com/linux/security/advisories/2003_016_samba.html", }, { name: "MDKSA-2003:032", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032", }, { name: "IMNX-2003-7+-003-01", tags: [ "vendor-advisory", "x_refsource_IMMUNIX", ], url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { name: "DSA-262", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2003/dsa-262", }, { name: "20030401 Immunix Secured OS 7+ samba update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { name: "8303", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/8303", }, { name: "20030302-01-I", tags: [ "vendor-advisory", "x_refsource_SGI", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I", }, { name: "8299", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/8299", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2003-0085", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "20030317 Security Bugfix for Samba - Samba 2.2.8 Released", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104792723017768&w=2", }, { name: "20030317 GLSA: samba (200303-11)", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104792646416629&w=2", }, { name: "GLSA-200303-11", refsource: "GENTOO", url: "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml", }, { name: "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL", refsource: "BUGTRAQ", url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { name: "APPLE-SA-2003-03-24", refsource: "APPLE", url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { name: "RHSA-2003:096", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2003-096.html", }, { name: "oval:org.mitre.oval:def:552", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552", }, { name: "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104801012929374&w=2", }, { name: "7106", refsource: "BID", url: "http://www.securityfocus.com/bid/7106", }, { name: "RHSA-2003:095", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2003-095.html", }, { name: "VU#298233", refsource: "CERT-VN", url: "http://www.kb.cert.org/vuls/id/298233", }, { name: "SuSE-SA:2003:016", refsource: "SUSE", url: "http://www.novell.com/linux/security/advisories/2003_016_samba.html", }, { name: "MDKSA-2003:032", refsource: "MANDRAKE", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032", }, { name: "IMNX-2003-7+-003-01", refsource: "IMMUNIX", url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { name: "DSA-262", refsource: "DEBIAN", url: "http://www.debian.org/security/2003/dsa-262", }, { name: "20030401 Immunix Secured OS 7+ samba update", refsource: "BUGTRAQ", url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { name: "8303", refsource: "SECUNIA", url: "http://secunia.com/advisories/8303", }, { name: "20030302-01-I", refsource: "SGI", url: "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I", }, { name: "8299", refsource: "SECUNIA", url: "http://secunia.com/advisories/8299", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2003-0085", datePublished: "2003-03-18T05:00:00", dateReserved: "2003-02-10T00:00:00", dateUpdated: "2024-08-08T01:43:36.004Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2001-1162
Vulnerability from cvelistv5
Published
2002-06-25 04:00
Modified
2024-08-08 04:44
Severity ?
EPSS score ?
Summary
Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T04:44:08.280Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "MDKSA-2001-062", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", "x_transferred", ], url: "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3", }, { name: "HPSBUX0107-157", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://www.securityfocus.com/advisories/3423", }, { name: "DSA-065", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2001/dsa-065", }, { name: "2928", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/2928", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://us1.samba.org/samba/whatsnew/macroexploit.html", }, { name: "CSSA-2001-024.0", tags: [ "vendor-advisory", "x_refsource_CALDERA", "x_transferred", ], url: "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt", }, { name: "IMNX-2001-70-027-01", tags: [ "vendor-advisory", "x_refsource_IMMUNIX", "x_transferred", ], url: "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01", }, { name: "RHSA-2001:086", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2001-086.html", }, { name: "samba-netbios-file-creation(6731)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731", }, { name: "20010623 smbd remote file creation vulnerability", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/193027", }, { name: "CLA-2001:405", tags: [ "vendor-advisory", "x_refsource_CONECTIVA", "x_transferred", ], url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000405", }, { name: "L-105", tags: [ "third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred", ], url: "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml", }, { name: "20011002-01-P", tags: [ "vendor-advisory", "x_refsource_SGI", "x_transferred", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2001-06-23T00:00:00", descriptions: [ { lang: "en", value: "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2002-03-22T10:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "MDKSA-2001-062", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", ], url: "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3", }, { name: "HPSBUX0107-157", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://www.securityfocus.com/advisories/3423", }, { name: "DSA-065", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2001/dsa-065", }, { name: "2928", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/2928", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://us1.samba.org/samba/whatsnew/macroexploit.html", }, { name: "CSSA-2001-024.0", tags: [ "vendor-advisory", "x_refsource_CALDERA", ], url: "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt", }, { name: "IMNX-2001-70-027-01", tags: [ "vendor-advisory", "x_refsource_IMMUNIX", ], url: "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01", }, { name: "RHSA-2001:086", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2001-086.html", }, { name: "samba-netbios-file-creation(6731)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731", }, { name: "20010623 smbd remote file creation vulnerability", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://www.securityfocus.com/archive/1/193027", }, { name: "CLA-2001:405", tags: [ "vendor-advisory", "x_refsource_CONECTIVA", ], url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000405", }, { name: "L-105", tags: [ "third-party-advisory", "government-resource", "x_refsource_CIAC", ], url: "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml", }, { name: "20011002-01-P", tags: [ "vendor-advisory", "x_refsource_SGI", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2001-1162", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "MDKSA-2001-062", refsource: "MANDRAKE", url: "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3", }, { name: "HPSBUX0107-157", refsource: "HP", url: "http://www.securityfocus.com/advisories/3423", }, { name: "DSA-065", refsource: "DEBIAN", url: "http://www.debian.org/security/2001/dsa-065", }, { name: "2928", refsource: "BID", url: "http://www.securityfocus.com/bid/2928", }, { name: "http://us1.samba.org/samba/whatsnew/macroexploit.html", refsource: "CONFIRM", url: "http://us1.samba.org/samba/whatsnew/macroexploit.html", }, { name: "CSSA-2001-024.0", refsource: "CALDERA", url: "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt", }, { name: "IMNX-2001-70-027-01", refsource: "IMMUNIX", url: "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01", }, { name: "RHSA-2001:086", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2001-086.html", }, { name: "samba-netbios-file-creation(6731)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731", }, { name: "20010623 smbd remote file creation vulnerability", refsource: "BUGTRAQ", url: "http://www.securityfocus.com/archive/1/193027", }, { name: "CLA-2001:405", refsource: "CONECTIVA", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000405", }, { name: "L-105", refsource: "CIAC", url: "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml", }, { name: "20011002-01-P", refsource: "SGI", url: "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2001-1162", datePublished: "2002-06-25T04:00:00", dateReserved: "2002-03-15T00:00:00", dateUpdated: "2024-08-08T04:44:08.280Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2002-0991
Vulnerability from cvelistv5
Published
2002-08-31 04:00
Modified
2024-08-08 03:12
Severity ?
EPSS score ?
Summary
Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.
References
| ▼ | URL | Tags |
|---|---|---|
| http://archives.neohapsis.com/archives/hp/2002-q3/0016.html | vendor-advisory, x_refsource_HP | |
| http://www.iss.net/security_center/static/9431.php | vdb-entry, x_refsource_XF | |
| http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html | mailing-list, x_refsource_BUGTRAQ | |
| http://www.securityfocus.com/bid/5088 | vdb-entry, x_refsource_BID |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T03:12:17.026Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "HPSBUX0207-200", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html", }, { name: "hp-cifs-login-bo(9431)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "http://www.iss.net/security_center/static/9431.php", }, { name: "20020624 Sharity Cifslogin Buffer Overflow (arguments)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html", }, { name: "5088", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/5088", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2002-06-24T00:00:00", descriptions: [ { lang: "en", value: "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2002-09-10T09:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "HPSBUX0207-200", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html", }, { name: "hp-cifs-login-bo(9431)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "http://www.iss.net/security_center/static/9431.php", }, { name: "20020624 Sharity Cifslogin Buffer Overflow (arguments)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html", }, { name: "5088", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/5088", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2002-0991", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "HPSBUX0207-200", refsource: "HP", url: "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html", }, { name: "hp-cifs-login-bo(9431)", refsource: "XF", url: "http://www.iss.net/security_center/static/9431.php", }, { name: "20020624 Sharity Cifslogin Buffer Overflow (arguments)", refsource: "BUGTRAQ", url: "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html", }, { name: "5088", refsource: "BID", url: "http://www.securityfocus.com/bid/5088", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2002-0991", datePublished: "2002-08-31T04:00:00", dateReserved: "2002-08-27T00:00:00", dateUpdated: "2024-08-08T03:12:17.026Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2003-0196
Vulnerability from cvelistv5
Published
2003-04-15 04:00
Modified
2024-08-08 01:43
Severity ?
EPSS score ?
Summary
Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
References
| ▼ | URL | Tags |
|---|---|---|
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564 | vdb-entry, signature, x_refsource_OVAL | |
| http://www.debian.org/security/2003/dsa-280 | vendor-advisory, x_refsource_DEBIAN | |
| http://www.mandriva.com/security/advisories?name=MDKSA-2003:044 | vendor-advisory, x_refsource_MANDRAKE | |
| http://www.redhat.com/support/errata/RHSA-2003-137.html | vendor-advisory, x_refsource_REDHAT | |
| http://marc.info/?l=bugtraq&m=104973186901597&w=2 | mailing-list, x_refsource_BUGTRAQ | |
| http://marc.info/?l=bugtraq&m=104974612519064&w=2 | mailing-list, x_refsource_BUGTRAQ |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T01:43:36.046Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "oval:org.mitre.oval:def:564", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564", }, { name: "DSA-280", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2003/dsa-280", }, { name: "MDKSA-2003:044", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { name: "RHSA-2003:137", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { name: "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104973186901597&w=2", }, { name: "20030407 Immunix Secured OS 7+ samba update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2003-04-07T00:00:00", descriptions: [ { lang: "en", value: "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-10T00:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "oval:org.mitre.oval:def:564", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564", }, { name: "DSA-280", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2003/dsa-280", }, { name: "MDKSA-2003:044", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { name: "RHSA-2003:137", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { name: "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104973186901597&w=2", }, { name: "20030407 Immunix Secured OS 7+ samba update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2003-0196", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "oval:org.mitre.oval:def:564", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564", }, { name: "DSA-280", refsource: "DEBIAN", url: "http://www.debian.org/security/2003/dsa-280", }, { name: "MDKSA-2003:044", refsource: "MANDRAKE", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { name: "RHSA-2003:137", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { name: "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104973186901597&w=2", }, { name: "20030407 Immunix Secured OS 7+ samba update", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2003-0196", datePublished: "2003-04-15T04:00:00", dateReserved: "2003-04-01T00:00:00", dateUpdated: "2024-08-08T01:43:36.046Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2003-0201
Vulnerability from cvelistv5
Published
2003-04-15 04:00
Modified
2024-08-08 01:43
Severity ?
EPSS score ?
Summary
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-08T01:43:36.066Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "CLA-2003:624", tags: [ "vendor-advisory", "x_refsource_CONECTIVA", "x_transferred", ], url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624", }, { name: "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104981682014565&w=2", }, { name: "20030403-01-P", tags: [ "vendor-advisory", "x_refsource_SGI", "x_transferred", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P", }, { name: "SuSE-SA:2003:025", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://www.novell.com/linux/security/advisories/2003_025_samba.html", }, { name: "7294", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/7294", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt", }, { name: "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104972664226781&w=2", }, { name: "DSA-280", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2003/dsa-280", }, { name: "20030409 GLSA: samba (200304-02)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104994564212488&w=2", }, { name: "VU#267873", tags: [ "third-party-advisory", "x_refsource_CERT-VN", "x_transferred", ], url: "http://www.kb.cert.org/vuls/id/267873", }, { name: "MDKSA-2003:044", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { name: "RHSA-2003:137", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { name: "20030407 Immunix Secured OS 7+ samba update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { name: "oval:org.mitre.oval:def:567", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567", }, { name: "oval:org.mitre.oval:def:2163", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2003-04-07T00:00:00", descriptions: [ { lang: "en", value: "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-10T00:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "CLA-2003:624", tags: [ "vendor-advisory", "x_refsource_CONECTIVA", ], url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624", }, { name: "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104981682014565&w=2", }, { name: "20030403-01-P", tags: [ "vendor-advisory", "x_refsource_SGI", ], url: "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P", }, { name: "SuSE-SA:2003:025", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://www.novell.com/linux/security/advisories/2003_025_samba.html", }, { name: "7294", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/7294", }, { tags: [ "x_refsource_MISC", ], url: "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt", }, { name: "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104972664226781&w=2", }, { name: "DSA-280", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2003/dsa-280", }, { name: "20030409 GLSA: samba (200304-02)", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104994564212488&w=2", }, { name: "VU#267873", tags: [ "third-party-advisory", "x_refsource_CERT-VN", ], url: "http://www.kb.cert.org/vuls/id/267873", }, { name: "MDKSA-2003:044", tags: [ "vendor-advisory", "x_refsource_MANDRAKE", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { name: "RHSA-2003:137", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { name: "20030407 Immunix Secured OS 7+ samba update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { name: "oval:org.mitre.oval:def:567", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567", }, { name: "oval:org.mitre.oval:def:2163", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2003-0201", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "CLA-2003:624", refsource: "CONECTIVA", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624", }, { name: "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104981682014565&w=2", }, { name: "20030403-01-P", refsource: "SGI", url: "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P", }, { name: "SuSE-SA:2003:025", refsource: "SUSE", url: "http://www.novell.com/linux/security/advisories/2003_025_samba.html", }, { name: "7294", refsource: "BID", url: "http://www.securityfocus.com/bid/7294", }, { name: "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt", refsource: "MISC", url: "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt", }, { name: "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104972664226781&w=2", }, { name: "DSA-280", refsource: "DEBIAN", url: "http://www.debian.org/security/2003/dsa-280", }, { name: "20030409 GLSA: samba (200304-02)", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104994564212488&w=2", }, { name: "VU#267873", refsource: "CERT-VN", url: "http://www.kb.cert.org/vuls/id/267873", }, { name: "MDKSA-2003:044", refsource: "MANDRAKE", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { name: "RHSA-2003:137", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { name: "20030407 Immunix Secured OS 7+ samba update", refsource: "BUGTRAQ", url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { name: "oval:org.mitre.oval:def:567", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567", }, { name: "oval:org.mitre.oval:def:2163", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2003-0201", datePublished: "2003-04-15T04:00:00", dateReserved: "2003-04-04T00:00:00", dateUpdated: "2024-08-08T01:43:36.066Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Vulnerability from fkie_nvd
Published
2002-10-04 04:00
Modified
2025-04-03 01:03
Severity ?
Summary
Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| hp | cifs-9000_server | a.01.05 | |
| hp | cifs-9000_server | a.01.06 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.05:*:*:*:*:*:*:*", matchCriteriaId: "729FE6E7-5665-4A87-A281-0F904AEA1D05", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.06:*:*:*:*:*:*:*", matchCriteriaId: "46E92180-5696-49F2-8972-1949F2EBD5D7", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.", }, ], id: "CVE-2002-0991", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 7.2, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2002-10-04T04:00:00.000", references: [ { source: "cve@mitre.org", url: "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html", }, { source: "cve@mitre.org", url: "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.iss.net/security_center/static/9431.php", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/5088", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.iss.net/security_center/static/9431.php", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/5088", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2002-12-11 05:00
Modified
2025-04-03 01:03
Severity ?
Summary
Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| samba | samba | 2.2.2 | |
| samba | samba | 2.2.3 | |
| samba | samba | 2.2.4 | |
| samba | samba | 2.2.5 | |
| samba | samba | 2.2.6 | |
| sgi | irix | 6.5 | |
| sgi | irix | 6.5.1 | |
| sgi | irix | 6.5.2 | |
| sgi | irix | 6.5.3 | |
| sgi | irix | 6.5.4 | |
| sgi | irix | 6.5.5 | |
| sgi | irix | 6.5.6 | |
| sgi | irix | 6.5.7 | |
| sgi | irix | 6.5.8 | |
| sgi | irix | 6.5.9 | |
| sgi | irix | 6.5.10 | |
| sgi | irix | 6.5.11 | |
| sgi | irix | 6.5.12 | |
| sgi | irix | 6.5.13 | |
| sgi | irix | 6.5.14 | |
| sgi | irix | 6.5.15 | |
| sgi | irix | 6.5.16 | |
| sgi | irix | 6.5.17 | |
| sgi | irix | 6.5.18 | |
| hp | cifs-9000_server | a.01.08 | |
| hp | cifs-9000_server | a.01.08.01 | |
| hp | cifs-9000_server | a.01.09 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:samba:samba:2.2.2:*:*:*:*:*:*:*", matchCriteriaId: "8C71CB60-2689-4A4A-9509-E2F3135E6491", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.3:*:*:*:*:*:*:*", matchCriteriaId: "0129E404-3AE8-4F0E-89CB-7F2FA5B47011", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.4:*:*:*:*:*:*:*", matchCriteriaId: "A052141C-874D-4ED0-99FB-D7468FACFC6E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.5:*:*:*:*:*:*:*", matchCriteriaId: "9739EA65-9FA8-425E-B355-E690773D5B1B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.6:*:*:*:*:*:*:*", matchCriteriaId: "3B618F94-DAC2-4A97-9F7F-8BCEA3199769", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5:*:*:*:*:*:*:*", matchCriteriaId: "C30D6962-3DBB-4DF8-A04F-8E47AFEDCF99", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.1:*:*:*:*:*:*:*", matchCriteriaId: "36B60E50-4F5A-4404-BEA3-C94F7D27B156", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.2:*:*:*:*:*:*:*", matchCriteriaId: "6ECB750B-9F53-4DB6-8B26-71BCCA446FF7", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.3:*:*:*:*:*:*:*", matchCriteriaId: "E6B2E6D1-8C2D-4E15-A6BB-E4FE878ED1E7", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.4:*:*:*:*:*:*:*", matchCriteriaId: "440B7208-34DB-4898-8461-4E703F7EDFB7", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.5:*:*:*:*:*:*:*", matchCriteriaId: "5663579C-3AD2-4E5B-A595-C8DB984F9C26", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.6:*:*:*:*:*:*:*", matchCriteriaId: "D07AA144-6FD7-4C80-B4F2-D21C1AFC864A", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.7:*:*:*:*:*:*:*", matchCriteriaId: "29113D8E-9618-4A0E-9157-678332082858", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.8:*:*:*:*:*:*:*", matchCriteriaId: "313613E9-4837-433C-90EE-84A92E8D24E5", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.9:*:*:*:*:*:*:*", matchCriteriaId: "41AA1290-5039-406F-B195-3A4C018202D3", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.10:*:*:*:*:*:*:*", matchCriteriaId: "60CC9410-F6B8-4748-B76F-30626279028E", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.11:*:*:*:*:*:*:*", matchCriteriaId: "DCC67401-C85A-4E4E-AE61-85FEBBF4346B", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.12:*:*:*:*:*:*:*", matchCriteriaId: "1C4427AC-07C1-4765-981B-B5D86D698C2D", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.13:*:*:*:*:*:*:*", matchCriteriaId: "63EF0CEE-74A9-45C8-8AFD-77815230ACC6", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.14:*:*:*:*:*:*:*", matchCriteriaId: "5B24D34C-1F95-45C8-9A57-2D2622ED9019", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.15:*:*:*:*:*:*:*", matchCriteriaId: "6BD69805-D021-4DCC-9FB6-A0BEA721408A", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.16:*:*:*:*:*:*:*", matchCriteriaId: "B13C07CC-F615-4F30-B532-4BF6F02F84DF", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.17:*:*:*:*:*:*:*", matchCriteriaId: "8BE3F77A-909E-4947-A808-BCAB7F96A108", vulnerable: true, }, { criteria: "cpe:2.3:o:sgi:irix:6.5.18:*:*:*:*:*:*:*", matchCriteriaId: "A4F1E3C7-0FDD-46E1-8748-6A5FF669C95C", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08:*:*:*:*:*:*:*", matchCriteriaId: "7958ABC5-FEB3-419D-A65F-3FCC6BC4D2E2", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08.01:*:*:*:*:*:*:*", matchCriteriaId: "068C7ECD-52CB-4D6D-B946-59AE4ED2D9CB", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09:*:*:*:*:*:*:*", matchCriteriaId: "F7D2ACD0-595E-4130-BAED-9F8A0DB46F63", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.", }, { lang: "es", value: "Desbordamiento de búfer en Samba 2.2.2 a 2.2.6 permite a atacantes remotos causar una denegación de servicio y posíblemente ejecutar código arbitrario mediante una contraseña cifrada que causa un desbordamiento durante el descifrado en la cual una cadena de página de códigos DOS es convertida a una cadena unicode UCS2 little-endian.", }, ], id: "CVE-2002-1318", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 10, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2002-12-11T05:00:00.000", references: [ { source: "cve@mitre.org", url: "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I", }, { source: "cve@mitre.org", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=103801986818076&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=103859045302448&w=2", }, { source: "cve@mitre.org", url: "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580", }, { source: "cve@mitre.org", tags: [ "Vendor Advisory", ], url: "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html", }, { source: "cve@mitre.org", url: "http://www.ciac.org/ciac/bulletins/n-019.shtml", }, { source: "cve@mitre.org", url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { source: "cve@mitre.org", url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2002/dsa-200", }, { source: "cve@mitre.org", tags: [ "US Government Resource", ], url: "http://www.kb.cert.org/vuls/id/958321", }, { source: "cve@mitre.org", url: "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php", }, { source: "cve@mitre.org", url: "http://www.novell.com/linux/security/advisories/2002_045_samba.html", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.redhat.com/support/errata/RHSA-2002-266.html", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/6210", }, { source: "cve@mitre.org", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=103801986818076&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=103859045302448&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.ciac.org/ciac/bulletins/n-019.shtml", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.ciac.org/ciac/bulletins/n-023.shtml", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2002/dsa-200", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "US Government Resource", ], url: "http://www.kb.cert.org/vuls/id/958321", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.novell.com/linux/security/advisories/2002_045_samba.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.redhat.com/support/errata/RHSA-2002-266.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/6210", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2003-03-31 05:00
Modified
2025-04-03 01:03
Severity ?
Summary
Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| samba | samba | 2.0.0 | |
| samba | samba | 2.0.1 | |
| samba | samba | 2.0.2 | |
| samba | samba | 2.0.3 | |
| samba | samba | 2.0.4 | |
| samba | samba | 2.0.5 | |
| samba | samba | 2.0.6 | |
| samba | samba | 2.0.7 | |
| samba | samba | 2.0.8 | |
| samba | samba | 2.0.9 | |
| samba | samba | 2.0.10 | |
| samba | samba | 2.2.0 | |
| samba | samba | 2.2.0a | |
| samba | samba | 2.2.1a | |
| samba | samba | 2.2.2 | |
| samba | samba | 2.2.3 | |
| samba | samba | 2.2.3a | |
| samba | samba | 2.2.4 | |
| samba | samba | 2.2.5 | |
| samba | samba | 2.2.6 | |
| samba | samba | 2.2.7 | |
| samba | samba | 2.2.7a | |
| hp | cifs-9000_server | a.01.05 | |
| hp | cifs-9000_server | a.01.06 | |
| hp | cifs-9000_server | a.01.07 | |
| hp | cifs-9000_server | a.01.08 | |
| hp | cifs-9000_server | a.01.08.01 | |
| hp | cifs-9000_server | a.01.09 | |
| hp | cifs-9000_server | a.01.09.01 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:samba:samba:2.0.0:*:*:*:*:*:*:*", matchCriteriaId: "F681E4CC-B8D3-48A2-B93E-0363B22B059E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.1:*:*:*:*:*:*:*", matchCriteriaId: "76D03B96-8FF3-4FC6-BC38-288F3ADBA9BD", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.2:*:*:*:*:*:*:*", matchCriteriaId: "DDF2248C-5A71-49FC-88F4-2D1F376155FD", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.3:*:*:*:*:*:*:*", matchCriteriaId: "A4FD10B2-ED2D-4F55-8F0E-77429C8A716E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.4:*:*:*:*:*:*:*", matchCriteriaId: "D8F15704-2F2B-4536-A2A0-510B5CE91D09", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.5:*:*:*:*:*:*:*", matchCriteriaId: "93AF43FA-9947-4F26-96E8-1D77BF909AA0", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.6:*:*:*:*:*:*:*", matchCriteriaId: "B4A46D8D-1535-400B-B1CD-AA2685F4164D", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.7:*:*:*:*:*:*:*", matchCriteriaId: "1CB46ABA-F403-4715-915D-870BD221C8FE", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.8:*:*:*:*:*:*:*", matchCriteriaId: "AFD51F01-B47A-47F5-8798-2EB53EB17297", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.9:*:*:*:*:*:*:*", matchCriteriaId: "C127A2E6-F94F-41D5-82AA-60C0190186BF", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.10:*:*:*:*:*:*:*", matchCriteriaId: "61291A4C-28A3-433B-80D2-005976851882", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0:*:*:*:*:*:*:*", matchCriteriaId: "65AC9643-E1A5-4013-9607-17C6CC7CC63B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0a:*:*:*:*:*:*:*", matchCriteriaId: "090E2541-2DBA-41CB-A792-9E703C797949", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.1a:*:*:*:*:*:*:*", matchCriteriaId: "19F65FF3-71F8-4278-A823-A6E0FF65D9F1", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.2:*:*:*:*:*:*:*", matchCriteriaId: "8C71CB60-2689-4A4A-9509-E2F3135E6491", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.3:*:*:*:*:*:*:*", matchCriteriaId: "0129E404-3AE8-4F0E-89CB-7F2FA5B47011", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.3a:*:*:*:*:*:*:*", matchCriteriaId: "614547F5-9C3F-489B-9B72-91B0FF646CCC", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.4:*:*:*:*:*:*:*", matchCriteriaId: "A052141C-874D-4ED0-99FB-D7468FACFC6E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.5:*:*:*:*:*:*:*", matchCriteriaId: "9739EA65-9FA8-425E-B355-E690773D5B1B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.6:*:*:*:*:*:*:*", matchCriteriaId: "3B618F94-DAC2-4A97-9F7F-8BCEA3199769", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.7:*:*:*:*:*:*:*", matchCriteriaId: "EEE7C057-B024-4417-B572-5D396366620E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.7a:*:*:*:*:*:*:*", matchCriteriaId: "34DC3500-F8F0-46E1-B0AA-C2474CCB3DAA", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.05:*:*:*:*:*:*:*", matchCriteriaId: "729FE6E7-5665-4A87-A281-0F904AEA1D05", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.06:*:*:*:*:*:*:*", matchCriteriaId: "46E92180-5696-49F2-8972-1949F2EBD5D7", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.07:*:*:*:*:*:*:*", matchCriteriaId: "0D19CE56-C533-4997-977E-3BCE923FB4E6", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08:*:*:*:*:*:*:*", matchCriteriaId: "7958ABC5-FEB3-419D-A65F-3FCC6BC4D2E2", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08.01:*:*:*:*:*:*:*", matchCriteriaId: "068C7ECD-52CB-4D6D-B946-59AE4ED2D9CB", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09:*:*:*:*:*:*:*", matchCriteriaId: "F7D2ACD0-595E-4130-BAED-9F8A0DB46F63", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09.01:*:*:*:*:*:*:*", matchCriteriaId: "AD6ED8E7-9271-4A82-95B1-D328A4A5B954", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.", }, ], id: "CVE-2003-0085", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 10, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2003-03-31T05:00:00.000", references: [ { source: "cve@mitre.org", url: "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104792646416629&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104792723017768&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104801012929374&w=2", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/8299", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/8303", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2003/dsa-262", }, { source: "cve@mitre.org", url: "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml", }, { source: "cve@mitre.org", tags: [ "US Government Resource", ], url: "http://www.kb.cert.org/vuls/id/298233", }, { source: "cve@mitre.org", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032", }, { source: "cve@mitre.org", url: "http://www.novell.com/linux/security/advisories/2003_016_samba.html", }, { source: "cve@mitre.org", url: "http://www.redhat.com/support/errata/RHSA-2003-095.html", }, { source: "cve@mitre.org", url: "http://www.redhat.com/support/errata/RHSA-2003-096.html", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/7106", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104792646416629&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104792723017768&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104801012929374&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/8299", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/8303", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2003/dsa-262", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "US Government Resource", ], url: "http://www.kb.cert.org/vuls/id/298233", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.novell.com/linux/security/advisories/2003_016_samba.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.redhat.com/support/errata/RHSA-2003-095.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.redhat.com/support/errata/RHSA-2003-096.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/archive/1/316165/30/25370/threaded", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/archive/1/317145/30/25220/threaded", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/7106", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2003-05-05 04:00
Modified
2025-04-03 01:03
Severity ?
Summary
Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:samba:samba:2.0.0:*:*:*:*:*:*:*", matchCriteriaId: "F681E4CC-B8D3-48A2-B93E-0363B22B059E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.1:*:*:*:*:*:*:*", matchCriteriaId: "76D03B96-8FF3-4FC6-BC38-288F3ADBA9BD", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.2:*:*:*:*:*:*:*", matchCriteriaId: "DDF2248C-5A71-49FC-88F4-2D1F376155FD", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.3:*:*:*:*:*:*:*", matchCriteriaId: "A4FD10B2-ED2D-4F55-8F0E-77429C8A716E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.4:*:*:*:*:*:*:*", matchCriteriaId: "D8F15704-2F2B-4536-A2A0-510B5CE91D09", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.5:*:*:*:*:*:*:*", matchCriteriaId: "93AF43FA-9947-4F26-96E8-1D77BF909AA0", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.6:*:*:*:*:*:*:*", matchCriteriaId: "B4A46D8D-1535-400B-B1CD-AA2685F4164D", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.7:*:*:*:*:*:*:*", matchCriteriaId: "1CB46ABA-F403-4715-915D-870BD221C8FE", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.8:*:*:*:*:*:*:*", matchCriteriaId: "AFD51F01-B47A-47F5-8798-2EB53EB17297", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.9:*:*:*:*:*:*:*", matchCriteriaId: "C127A2E6-F94F-41D5-82AA-60C0190186BF", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.10:*:*:*:*:*:*:*", matchCriteriaId: "61291A4C-28A3-433B-80D2-005976851882", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0:*:*:*:*:*:*:*", matchCriteriaId: "65AC9643-E1A5-4013-9607-17C6CC7CC63B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0a:*:*:*:*:*:*:*", matchCriteriaId: "090E2541-2DBA-41CB-A792-9E703C797949", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.1a:*:*:*:*:*:*:*", matchCriteriaId: "19F65FF3-71F8-4278-A823-A6E0FF65D9F1", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.2:*:*:*:*:*:*:*", matchCriteriaId: "8C71CB60-2689-4A4A-9509-E2F3135E6491", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.3:*:*:*:*:*:*:*", matchCriteriaId: "0129E404-3AE8-4F0E-89CB-7F2FA5B47011", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.3a:*:*:*:*:*:*:*", matchCriteriaId: "614547F5-9C3F-489B-9B72-91B0FF646CCC", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.4:*:*:*:*:*:*:*", matchCriteriaId: "A052141C-874D-4ED0-99FB-D7468FACFC6E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.5:*:*:*:*:*:*:*", matchCriteriaId: "9739EA65-9FA8-425E-B355-E690773D5B1B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.6:*:*:*:*:*:*:*", matchCriteriaId: "3B618F94-DAC2-4A97-9F7F-8BCEA3199769", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.7:*:*:*:*:*:*:*", matchCriteriaId: "EEE7C057-B024-4417-B572-5D396366620E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.7a:*:*:*:*:*:*:*", matchCriteriaId: "34DC3500-F8F0-46E1-B0AA-C2474CCB3DAA", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.8:*:*:*:*:*:*:*", matchCriteriaId: "CFCD334C-FB95-41A6-8F4C-FCC4E70CE930", vulnerable: true, }, { criteria: "cpe:2.3:a:samba-tng:samba-tng:0.3:*:*:*:*:*:*:*", matchCriteriaId: "28EA52C5-5E5C-4A8E-B26E-D7156D604FF1", vulnerable: true, }, { criteria: "cpe:2.3:a:samba-tng:samba-tng:0.3.1:*:*:*:*:*:*:*", matchCriteriaId: "618D50B8-6F21-48DF-829C-1B77C0AA4E09", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:compaq:tru64:4.0b:*:*:*:*:*:*:*", matchCriteriaId: "5E86C510-4F66-4B6B-BD11-E41E20ECAEEC", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0d:*:*:*:*:*:*:*", matchCriteriaId: "B750254C-A460-4F52-B4A4-636CB2CBE50E", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0d_pk9_bl17:*:*:*:*:*:*:*", matchCriteriaId: "EF069023-0716-4806-9A04-1171770940B1", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0f:*:*:*:*:*:*:*", matchCriteriaId: "AB2B5B59-B0CD-4F49-870B-F8F8BE902965", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0f_pk6_bl17:*:*:*:*:*:*:*", matchCriteriaId: "F9A4900F-7A0B-441E-967D-45B1A051A5B9", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0f_pk7_bl18:*:*:*:*:*:*:*", matchCriteriaId: "F41B68A9-C4EF-47F5-BE84-BD20C073C2D2", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0g:*:*:*:*:*:*:*", matchCriteriaId: "75546AD4-15DD-45FD-AFFB-8A59CB8D401C", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0g_pk3_bl17:*:*:*:*:*:*:*", matchCriteriaId: "38B11F9E-64EE-47D1-A341-62F54382227C", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0:*:*:*:*:*:*:*", matchCriteriaId: "3198FD9F-ACB8-4F59-A896-68A3A7287D78", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0_pk4_bl17:*:*:*:*:*:*:*", matchCriteriaId: "146562A0-D7AA-465D-9F48-5B0E75E4D109", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0_pk4_bl18:*:*:*:*:*:*:*", matchCriteriaId: "6BC279C2-31D2-4A13-B38B-593FA761361E", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0a:*:*:*:*:*:*:*", matchCriteriaId: "5C85EF72-0F04-4705-9BED-C921F5FB7860", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0a_pk3_bl17:*:*:*:*:*:*:*", matchCriteriaId: "B86A9A68-DFD4-42FD-A11C-FCBC73E6EDCE", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0f:*:*:*:*:*:*:*", matchCriteriaId: "9BE8BFB6-FE31-4C44-9562-76DC47E105B8", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1:*:*:*:*:*:*:*", matchCriteriaId: "E296E409-EF32-48FC-88CB-C38C7CF4A239", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk3_bl17:*:*:*:*:*:*:*", matchCriteriaId: "BE0BEA96-837B-4699-BE2E-CCD8F8F3CF38", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk4_bl18:*:*:*:*:*:*:*", matchCriteriaId: "1E4DFD7B-4A10-4991-AC26-C8A957E87009", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk5_bl19:*:*:*:*:*:*:*", matchCriteriaId: "0EA62CD1-19EA-46D8-9423-BFFF9FC8CA3E", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk6_bl20:*:*:*:*:*:*:*", matchCriteriaId: "881FCB3C-DAD8-4883-B185-19A61B76102B", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a:*:*:*:*:*:*:*", matchCriteriaId: "B9413090-D930-49DB-B7ED-7035C717B821", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a_pk1_bl1:*:*:*:*:*:*:*", matchCriteriaId: "168C607C-6170-4936-9A53-AE3AAEBD79F8", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a_pk2_bl2:*:*:*:*:*:*:*", matchCriteriaId: "A7793736-B551-428D-8A2F-291968E212FC", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a_pk3_bl3:*:*:*:*:*:*:*", matchCriteriaId: "3AB7AD47-5AF1-4CE0-A295-48567F991EAA", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1b:*:*:*:*:*:*:*", matchCriteriaId: "55E0D6B2-C319-4DD4-AB4C-F2F35F7806F8", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1b_pk1_bl1:*:*:*:*:*:*:*", matchCriteriaId: "CCEFCB5E-D7DF-48BF-B62A-081C4799F5A9", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*", matchCriteriaId: "53BBFE9A-6846-4625-91AC-47AA0BC0933A", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*", matchCriteriaId: "EDE44C49-172C-4899-8CC8-29AA99A7CD2F", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*", matchCriteriaId: "4259A901-A1CF-44EE-80C4-2031D3FCADC3", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*", matchCriteriaId: "771931F7-9180-4EBD-8627-E1CF17D24647", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.04:*:*:*:*:*:*:*", matchCriteriaId: "9B7A7B90-9086-4A10-8FB4-1C1D909BC173", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*", matchCriteriaId: "EDD9BE2B-7255-4FC1-B452-E8370632B03F", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.20:*:*:*:*:*:*:*", matchCriteriaId: "6AB76FE0-BEF3-40D4-B362-0C95CA625A71", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*", matchCriteriaId: "EBD0DC0A-ACAD-4870-9C0F-3095F2AC8CCD", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*", matchCriteriaId: "54AF87E4-52A4-44CA-B48E-A5BB139E6410", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*", matchCriteriaId: "F66BAF35-A8B9-4E95-B270-444206FDD35B", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*", matchCriteriaId: "34EBF074-78C8-41AF-88F1-DA6726E56F8B", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*", matchCriteriaId: "8F1F312C-413F-4DB4-ABF4-48E33F6FECF2", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*", matchCriteriaId: "1894C542-AA81-40A9-BF47-AE24C93C1ACB", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*", matchCriteriaId: "A711CDC2-412C-499D-9FA6-7F25B06267C6", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*", matchCriteriaId: "0B837BB7-5F62-4CD5-9C64-8553C28EA8A7", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*", matchCriteriaId: "369207B4-96FA-4324-9445-98FAE8ECF5DB", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*", matchCriteriaId: "39F847DB-65A9-47DA-BCFA-A179E5E2301A", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*", matchCriteriaId: "08003947-A4F1-44AC-84C6-9F8D097EB759", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", matchCriteriaId: "A2475113-CFE4-41C8-A86F-F2DA6548D224", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.05:*:*:*:*:*:*:*", matchCriteriaId: "729FE6E7-5665-4A87-A281-0F904AEA1D05", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.06:*:*:*:*:*:*:*", matchCriteriaId: "46E92180-5696-49F2-8972-1949F2EBD5D7", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.07:*:*:*:*:*:*:*", matchCriteriaId: "0D19CE56-C533-4997-977E-3BCE923FB4E6", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08:*:*:*:*:*:*:*", matchCriteriaId: "7958ABC5-FEB3-419D-A65F-3FCC6BC4D2E2", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08.01:*:*:*:*:*:*:*", matchCriteriaId: "068C7ECD-52CB-4D6D-B946-59AE4ED2D9CB", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09:*:*:*:*:*:*:*", matchCriteriaId: "F7D2ACD0-595E-4130-BAED-9F8A0DB46F63", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09.01:*:*:*:*:*:*:*", matchCriteriaId: "AD6ED8E7-9271-4A82-95B1-D328A4A5B954", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09.02:*:*:*:*:*:*:*", matchCriteriaId: "09832B61-ABFB-4C24-9861-8291FF2D7669", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.", }, { lang: "es", value: "Múltiples desbordamientos de búfer en Samba anteriores a 2.2.8a puede permitir a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio, descubierto por el equipo de Samba y una vulnerabilidad distinta de CAN-2003-0201.", }, ], id: "CVE-2003-0196", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 10, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2003-05-05T04:00:00.000", references: [ { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104973186901597&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2003/dsa-280", }, { source: "cve@mitre.org", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104973186901597&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2003/dsa-280", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2001-08-31 04:00
Modified
2025-04-03 01:03
Severity ?
Summary
HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| hp | cifs-9000_server | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:*:*:*:*:*:*:*:*", matchCriteriaId: "DD06C4B0-0D36-44D7-A215-5A7ADA6A4CFE", versionEndIncluding: "a.01.07", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.", }, ], id: "CVE-2001-0981", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 10, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2001-08-31T04:00:00.000", references: [ { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html", }, { source: "cve@mitre.org", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2001-06-23 04:00
Modified
2025-04-03 01:03
Severity ?
Summary
Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:samba:samba:2.0.5:*:*:*:*:*:*:*", matchCriteriaId: "93AF43FA-9947-4F26-96E8-1D77BF909AA0", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.6:*:*:*:*:*:*:*", matchCriteriaId: "B4A46D8D-1535-400B-B1CD-AA2685F4164D", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.7:*:*:*:*:*:*:*", matchCriteriaId: "1CB46ABA-F403-4715-915D-870BD221C8FE", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.8:*:*:*:*:*:*:*", matchCriteriaId: "AFD51F01-B47A-47F5-8798-2EB53EB17297", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.9:*:*:*:*:*:*:*", matchCriteriaId: "C127A2E6-F94F-41D5-82AA-60C0190186BF", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0:*:*:*:*:*:*:*", matchCriteriaId: "65AC9643-E1A5-4013-9607-17C6CC7CC63B", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.05:*:*:*:*:*:*:*", matchCriteriaId: "729FE6E7-5665-4A87-A281-0F904AEA1D05", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.06:*:*:*:*:*:*:*", matchCriteriaId: "46E92180-5696-49F2-8972-1949F2EBD5D7", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.", }, ], id: "CVE-2001-1162", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 10, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2001-06-23T04:00:00.000", references: [ { source: "cve@mitre.org", url: "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P", }, { source: "cve@mitre.org", url: "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml", }, { source: "cve@mitre.org", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000405", }, { source: "cve@mitre.org", url: "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01", }, { source: "cve@mitre.org", url: "http://us1.samba.org/samba/whatsnew/macroexploit.html", }, { source: "cve@mitre.org", url: "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt", }, { source: "cve@mitre.org", url: "http://www.debian.org/security/2001/dsa-065", }, { source: "cve@mitre.org", url: "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3", }, { source: "cve@mitre.org", url: "http://www.redhat.com/support/errata/RHSA-2001-086.html", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/advisories/3423", }, { source: "cve@mitre.org", tags: [ "Exploit", "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/archive/1/193027", }, { source: "cve@mitre.org", tags: [ "Exploit", "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/2928", }, { source: "cve@mitre.org", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000405", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://us1.samba.org/samba/whatsnew/macroexploit.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.debian.org/security/2001/dsa-065", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.redhat.com/support/errata/RHSA-2001-086.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/advisories/3423", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Exploit", "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/archive/1/193027", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Exploit", "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/2928", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2003-05-05 04:00
Modified
2025-04-03 01:03
Severity ?
Summary
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:samba:samba:2.0.0:*:*:*:*:*:*:*", matchCriteriaId: "F681E4CC-B8D3-48A2-B93E-0363B22B059E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.1:*:*:*:*:*:*:*", matchCriteriaId: "76D03B96-8FF3-4FC6-BC38-288F3ADBA9BD", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.2:*:*:*:*:*:*:*", matchCriteriaId: "DDF2248C-5A71-49FC-88F4-2D1F376155FD", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.3:*:*:*:*:*:*:*", matchCriteriaId: "A4FD10B2-ED2D-4F55-8F0E-77429C8A716E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.4:*:*:*:*:*:*:*", matchCriteriaId: "D8F15704-2F2B-4536-A2A0-510B5CE91D09", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.5:*:*:*:*:*:*:*", matchCriteriaId: "93AF43FA-9947-4F26-96E8-1D77BF909AA0", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.6:*:*:*:*:*:*:*", matchCriteriaId: "B4A46D8D-1535-400B-B1CD-AA2685F4164D", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.7:*:*:*:*:*:*:*", matchCriteriaId: "1CB46ABA-F403-4715-915D-870BD221C8FE", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.8:*:*:*:*:*:*:*", matchCriteriaId: "AFD51F01-B47A-47F5-8798-2EB53EB17297", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.9:*:*:*:*:*:*:*", matchCriteriaId: "C127A2E6-F94F-41D5-82AA-60C0190186BF", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.0.10:*:*:*:*:*:*:*", matchCriteriaId: "61291A4C-28A3-433B-80D2-005976851882", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0:*:*:*:*:*:*:*", matchCriteriaId: "65AC9643-E1A5-4013-9607-17C6CC7CC63B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.0a:*:*:*:*:*:*:*", matchCriteriaId: "090E2541-2DBA-41CB-A792-9E703C797949", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.1a:*:*:*:*:*:*:*", matchCriteriaId: "19F65FF3-71F8-4278-A823-A6E0FF65D9F1", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.3a:*:*:*:*:*:*:*", matchCriteriaId: "614547F5-9C3F-489B-9B72-91B0FF646CCC", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.4:*:*:*:*:*:*:*", matchCriteriaId: "A052141C-874D-4ED0-99FB-D7468FACFC6E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.5:*:*:*:*:*:*:*", matchCriteriaId: "9739EA65-9FA8-425E-B355-E690773D5B1B", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.6:*:*:*:*:*:*:*", matchCriteriaId: "3B618F94-DAC2-4A97-9F7F-8BCEA3199769", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.7:*:*:*:*:*:*:*", matchCriteriaId: "EEE7C057-B024-4417-B572-5D396366620E", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.7a:*:*:*:*:*:*:*", matchCriteriaId: "34DC3500-F8F0-46E1-B0AA-C2474CCB3DAA", vulnerable: true, }, { criteria: "cpe:2.3:a:samba:samba:2.2.8:*:*:*:*:*:*:*", matchCriteriaId: "CFCD334C-FB95-41A6-8F4C-FCC4E70CE930", vulnerable: true, }, { criteria: "cpe:2.3:a:samba-tng:samba-tng:0.3:*:*:*:*:*:*:*", matchCriteriaId: "28EA52C5-5E5C-4A8E-B26E-D7156D604FF1", vulnerable: true, }, { criteria: "cpe:2.3:a:samba-tng:samba-tng:0.3.1:*:*:*:*:*:*:*", matchCriteriaId: "618D50B8-6F21-48DF-829C-1B77C0AA4E09", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*", matchCriteriaId: "CDCF4FB3-F781-46D5-BEE7-485B3DC78B83", vulnerable: true, }, { criteria: "cpe:2.3:o:apple:mac_os_x:10.2.1:*:*:*:*:*:*:*", matchCriteriaId: "AE52A344-8B07-480D-A57F-B1F6E6574F3B", vulnerable: true, }, { criteria: "cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*", matchCriteriaId: "56CC0444-570C-4BB5-B53A-C5CA0BD87935", vulnerable: true, }, { criteria: "cpe:2.3:o:apple:mac_os_x:10.2.3:*:*:*:*:*:*:*", matchCriteriaId: "62E3EED7-FE30-4620-B40B-9CC49B77408A", vulnerable: true, }, { criteria: "cpe:2.3:o:apple:mac_os_x:10.2.4:*:*:*:*:*:*:*", matchCriteriaId: "5AFD8BC6-4893-4D9D-A26E-27AAC864F94B", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0b:*:*:*:*:*:*:*", matchCriteriaId: "5E86C510-4F66-4B6B-BD11-E41E20ECAEEC", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0d:*:*:*:*:*:*:*", matchCriteriaId: "B750254C-A460-4F52-B4A4-636CB2CBE50E", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0d_pk9_bl17:*:*:*:*:*:*:*", matchCriteriaId: "EF069023-0716-4806-9A04-1171770940B1", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0f:*:*:*:*:*:*:*", matchCriteriaId: "AB2B5B59-B0CD-4F49-870B-F8F8BE902965", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0f_pk6_bl17:*:*:*:*:*:*:*", matchCriteriaId: "F9A4900F-7A0B-441E-967D-45B1A051A5B9", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0f_pk7_bl18:*:*:*:*:*:*:*", matchCriteriaId: "F41B68A9-C4EF-47F5-BE84-BD20C073C2D2", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0g:*:*:*:*:*:*:*", matchCriteriaId: "75546AD4-15DD-45FD-AFFB-8A59CB8D401C", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:4.0g_pk3_bl17:*:*:*:*:*:*:*", matchCriteriaId: "38B11F9E-64EE-47D1-A341-62F54382227C", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0:*:*:*:*:*:*:*", matchCriteriaId: "3198FD9F-ACB8-4F59-A896-68A3A7287D78", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0_pk4_bl17:*:*:*:*:*:*:*", matchCriteriaId: "146562A0-D7AA-465D-9F48-5B0E75E4D109", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0_pk4_bl18:*:*:*:*:*:*:*", matchCriteriaId: "6BC279C2-31D2-4A13-B38B-593FA761361E", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0a:*:*:*:*:*:*:*", matchCriteriaId: "5C85EF72-0F04-4705-9BED-C921F5FB7860", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0a_pk3_bl17:*:*:*:*:*:*:*", matchCriteriaId: "B86A9A68-DFD4-42FD-A11C-FCBC73E6EDCE", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.0f:*:*:*:*:*:*:*", matchCriteriaId: "9BE8BFB6-FE31-4C44-9562-76DC47E105B8", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1:*:*:*:*:*:*:*", matchCriteriaId: "E296E409-EF32-48FC-88CB-C38C7CF4A239", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk3_bl17:*:*:*:*:*:*:*", matchCriteriaId: "BE0BEA96-837B-4699-BE2E-CCD8F8F3CF38", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk4_bl18:*:*:*:*:*:*:*", matchCriteriaId: "1E4DFD7B-4A10-4991-AC26-C8A957E87009", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk5_bl19:*:*:*:*:*:*:*", matchCriteriaId: "0EA62CD1-19EA-46D8-9423-BFFF9FC8CA3E", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1_pk6_bl20:*:*:*:*:*:*:*", matchCriteriaId: "881FCB3C-DAD8-4883-B185-19A61B76102B", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a:*:*:*:*:*:*:*", matchCriteriaId: "B9413090-D930-49DB-B7ED-7035C717B821", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a_pk1_bl1:*:*:*:*:*:*:*", matchCriteriaId: "168C607C-6170-4936-9A53-AE3AAEBD79F8", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a_pk2_bl2:*:*:*:*:*:*:*", matchCriteriaId: "A7793736-B551-428D-8A2F-291968E212FC", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1a_pk3_bl3:*:*:*:*:*:*:*", matchCriteriaId: "3AB7AD47-5AF1-4CE0-A295-48567F991EAA", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1b:*:*:*:*:*:*:*", matchCriteriaId: "55E0D6B2-C319-4DD4-AB4C-F2F35F7806F8", vulnerable: true, }, { criteria: "cpe:2.3:o:compaq:tru64:5.1b_pk1_bl1:*:*:*:*:*:*:*", matchCriteriaId: "CCEFCB5E-D7DF-48BF-B62A-081C4799F5A9", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*", matchCriteriaId: "53BBFE9A-6846-4625-91AC-47AA0BC0933A", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*", matchCriteriaId: "EDE44C49-172C-4899-8CC8-29AA99A7CD2F", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*", matchCriteriaId: "4259A901-A1CF-44EE-80C4-2031D3FCADC3", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*", matchCriteriaId: "771931F7-9180-4EBD-8627-E1CF17D24647", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.04:*:*:*:*:*:*:*", matchCriteriaId: "9B7A7B90-9086-4A10-8FB4-1C1D909BC173", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*", matchCriteriaId: "EDD9BE2B-7255-4FC1-B452-E8370632B03F", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.20:*:*:*:*:*:*:*", matchCriteriaId: "6AB76FE0-BEF3-40D4-B362-0C95CA625A71", vulnerable: true, }, { criteria: "cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*", matchCriteriaId: "EBD0DC0A-ACAD-4870-9C0F-3095F2AC8CCD", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*", matchCriteriaId: "54AF87E4-52A4-44CA-B48E-A5BB139E6410", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*", matchCriteriaId: "F66BAF35-A8B9-4E95-B270-444206FDD35B", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*", matchCriteriaId: "34EBF074-78C8-41AF-88F1-DA6726E56F8B", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*", matchCriteriaId: "8F1F312C-413F-4DB4-ABF4-48E33F6FECF2", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*", matchCriteriaId: "1894C542-AA81-40A9-BF47-AE24C93C1ACB", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*", matchCriteriaId: "A711CDC2-412C-499D-9FA6-7F25B06267C6", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*", matchCriteriaId: "0B837BB7-5F62-4CD5-9C64-8553C28EA8A7", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:solaris:9.0:x86_update_2:*:*:*:*:*:*", matchCriteriaId: "3F305CBD-4329-44DE-A85C-DE9FF371425E", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*", matchCriteriaId: "369207B4-96FA-4324-9445-98FAE8ECF5DB", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*", matchCriteriaId: "39F847DB-65A9-47DA-BCFA-A179E5E2301A", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*", matchCriteriaId: "08003947-A4F1-44AC-84C6-9F8D097EB759", vulnerable: true, }, { criteria: "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", matchCriteriaId: "A2475113-CFE4-41C8-A86F-F2DA6548D224", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.05:*:*:*:*:*:*:*", matchCriteriaId: "729FE6E7-5665-4A87-A281-0F904AEA1D05", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.06:*:*:*:*:*:*:*", matchCriteriaId: "46E92180-5696-49F2-8972-1949F2EBD5D7", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.07:*:*:*:*:*:*:*", matchCriteriaId: "0D19CE56-C533-4997-977E-3BCE923FB4E6", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08:*:*:*:*:*:*:*", matchCriteriaId: "7958ABC5-FEB3-419D-A65F-3FCC6BC4D2E2", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.08.01:*:*:*:*:*:*:*", matchCriteriaId: "068C7ECD-52CB-4D6D-B946-59AE4ED2D9CB", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09:*:*:*:*:*:*:*", matchCriteriaId: "F7D2ACD0-595E-4130-BAED-9F8A0DB46F63", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09.01:*:*:*:*:*:*:*", matchCriteriaId: "AD6ED8E7-9271-4A82-95B1-D328A4A5B954", vulnerable: true, }, { criteria: "cpe:2.3:a:hp:cifs-9000_server:a.01.09.02:*:*:*:*:*:*:*", matchCriteriaId: "09832B61-ABFB-4C24-9861-8291FF2D7669", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.", }, { lang: "es", value: "Desbordamiento de búfer en la función call_trans2open en trans2.c de Samba 2.2.x anteriores a 2.2.8a, 2.0.10 y versiones anteriores 2.0.x, y Samba-TNG anteriores a de 0.3.2, permite a atacantes remotos ejecutar código arbitrario.", }, ], id: "CVE-2003-0201", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 10, impactScore: 10, obtainAllPrivilege: true, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2003-05-05T04:00:00.000", references: [ { source: "cve@mitre.org", url: "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P", }, { source: "cve@mitre.org", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104972664226781&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104981682014565&w=2", }, { source: "cve@mitre.org", url: "http://marc.info/?l=bugtraq&m=104994564212488&w=2", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2003/dsa-280", }, { source: "cve@mitre.org", url: "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt", }, { source: "cve@mitre.org", tags: [ "US Government Resource", ], url: "http://www.kb.cert.org/vuls/id/267873", }, { source: "cve@mitre.org", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { source: "cve@mitre.org", url: "http://www.novell.com/linux/security/advisories/2003_025_samba.html", }, { source: "cve@mitre.org", url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { source: "cve@mitre.org", tags: [ "Exploit", "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/7294", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104972664226781&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104974612519064&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104981682014565&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://marc.info/?l=bugtraq&m=104994564212488&w=2", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "http://www.debian.org/security/2003/dsa-280", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "US Government Resource", ], url: "http://www.kb.cert.org/vuls/id/267873", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.novell.com/linux/security/advisories/2003_025_samba.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.redhat.com/support/errata/RHSA-2003-137.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Exploit", "Patch", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/7294", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }