Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0085

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2003-0085
Last Modified 07 Mar 2011 09:12:07
Published 31 Mar 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0085

Summary

Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.

Vulnerable Systems

Application

  • Hp Cifs-9000 Server A.01.05

  • Hp Cifs-9000 Server A.01.06

  • Hp Cifs-9000 Server A.01.07

  • Hp Cifs-9000 Server A.01.08

  • Hp Cifs-9000 Server A.01.08.01

  • Hp Cifs-9000 Server A.01.09

  • Hp Cifs-9000 Server A.01.09.01

  • Samba 2.0.0

  • Samba 2.0.1

  • Samba 2.0.10

  • Samba 2.0.2

  • Samba 2.0.3

  • Samba 2.0.4

  • Samba 2.0.5

  • Samba 2.0.6

  • Samba 2.0.7

  • Samba 2.0.8

  • Samba 2.0.9

  • Samba 2.2.0

  • Samba 2.2.0a

  • Samba 2.2.1a

  • Samba 2.2.2

  • Samba 2.2.3

  • Samba 2.2.3a

  • Samba 2.2.4

  • Samba 2.2.5

  • Samba 2.2.6

  • Samba 2.2.7

  • Samba 2.2.7a


References

CERT-VN - VU#298233

BID - 7106

DEBIAN - DSA-262

BUGTRAQ - 20030317 Security Bugfix for Samba - Samba 2.2.8 Released

BUGTRAQ - 20030317 GLSA: samba (200303-11)

IMMUNIX - IMNX-2003-7+-003-01

BUGTRAQ - 20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL

REDHAT - RHSA-2003:095

SUSE - SuSE-SA:2003:016

SGI - 20030302-01-I

REDHAT - RHSA-2003:096

MANDRAKE - MDKSA-2003:032

GENTOO - GLSA-200303-11

SECUNIA - 8303

SECUNIA - 8299

BUGTRAQ - 20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)

BUGTRAQ - 20030401 Immunix Secured OS 7+ samba update

APPLE - APPLE-SA-2003-03-24


Last Updated: 27 May 2016 11:02:28