Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2004-0949

Published: Jan 10, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2004-0949
CWEhttps://cwe.mitre.org/data/definitions/NVD-Other.html

The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba servers to (1) read arbitrary kernel information or (2) raise a counter value to an arbitrary number by sending the first part of the fragmented packet multiple times.

Affected Software

Name Vendor Start Version End Version
Suse_linux Suse 9.0 9.0
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.4.15 2.4.15
Enterprise_linux Redhat 2.1 2.1
Fedora_core Redhat core_2.0 core_2.0
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.6.5 2.6.5
Linux_kernel Linux 2.4.11 2.4.11
Linux_kernel Linux 2.6.1 2.6.1
Secure_linux Trustix 2.0 2.0
Suse_linux Suse 9.2 9.2
Enterprise_linux_desktop Redhat 3.0 3.0
Suse_linux Suse 9.0 9.0
Linux_kernel Linux 2.4.27 2.4.27
Linux_kernel Linux 2.4.18 2.4.18
Ubuntu_linux Ubuntu 4.1 4.1
Linux_kernel Linux 2.4.18 2.4.18
Linux_advanced_workstation Redhat 2.1 2.1
Linux_kernel Linux 2.4.26 2.4.26
Linux_kernel Linux 2.4.0 2.4.0
Suse_linux Suse 8.2 8.2
Enterprise_linux Redhat 3.0 3.0
Linux_kernel Linux 2.4.19 2.4.19
Linux_kernel Linux 2.4.21 2.4.21
Linux_kernel Linux 2.4.27 2.4.27
Enterprise_linux Redhat 2.1 2.1
Linux_kernel Linux 2.4.12 2.4.12
Linux_kernel Linux 2.4.13 2.4.13
Linux_kernel Linux 2.6.0 2.6.0
Suse_linux Suse 8 8
Linux_kernel Linux 2.4.19 2.4.19
Linux_kernel Linux 2.6.3 2.6.3
Suse_linux Suse 1.0 1.0
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.17 2.4.17
Linux_kernel Linux 2.6.4 2.6.4
Linux_kernel Linux 2.6_test9_cvs 2.6_test9_cvs
Linux_kernel Linux 2.4.21 2.4.21
Enterprise_linux Redhat 2.1 2.1
Linux_kernel Linux 2.6.7 2.6.7
Linux_kernel Linux 2.4.21 2.4.21
Linux_kernel Linux 2.4.23_ow2 2.4.23_ow2
Suse_linux Suse 9.0 9.0
Linux_kernel Linux 2.4.23 2.4.23
Linux_kernel Linux 2.6.2 2.6.2
Linux_kernel Linux 2.6.8 2.6.8
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.7 2.4.7
Linux_kernel Linux 2.6.1 2.6.1
Linux_kernel Linux 2.4.25 2.4.25
Linux_kernel Linux 2.6.8 2.6.8
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.24 2.4.24
Linux_kernel Linux 2.4.9 2.4.9
Linux_kernel Linux 2.6.0 2.6.0
Secure_linux Trustix 1.5 1.5
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.23 2.4.23
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.24_ow1 2.4.24_ow1
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.4.19 2.4.19
Linux_kernel Linux 2.4.10 2.4.10
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.2 2.4.2
Linux_kernel Linux 2.4.19 2.4.19
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.4.16 2.4.16
Linux_kernel Linux 2.4.8 2.4.8
Linux_kernel Linux 2.4.19 2.4.19
Linux_kernel Linux 2.4.19 2.4.19
Linux_kernel Linux 2.4.27 2.4.27
Linux_kernel Linux 2.4.14 2.4.14
Linux_advanced_workstation Redhat 2.1 2.1
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.27 2.4.27
Suse_linux Suse 9.1 9.1
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.19 2.4.19
Enterprise_linux Redhat 3.0 3.0
Linux_kernel Linux 2.4.21 2.4.21
Linux_kernel Linux 2.4.22 2.4.22
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.5 2.4.5
Enterprise_linux Redhat 2.1 2.1
Linux_kernel Linux 2.6.7 2.6.7
Linux_kernel Linux 2.6.1 2.6.1
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.6.6 2.6.6
Linux_kernel Linux 2.4.27 2.4.27
Linux_kernel Linux 2.6.9 2.6.9
Linux_kernel Linux 2.4.3 2.4.3
Enterprise_linux Redhat 3.0 3.0
Enterprise_linux Redhat 2.1 2.1
Linux_kernel Linux 2.4.1 2.4.1
Secure_linux Trustix 2.1 2.1
Linux_kernel Linux 2.4.4 2.4.4
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.4.18 2.4.18
Linux_kernel Linux 2.6.0 2.6.0
Secure_linux Trustix 2.2 2.2
Linux_kernel Linux 2.4.27 2.4.27
Linux_kernel Linux 2.4.0 2.4.0
Fedora_core Redhat core_3.0 core_3.0
Linux_kernel Linux 2.4.6 2.4.6
Ubuntu_linux Ubuntu 4.1 4.1
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.6.8 2.6.8
Linux_kernel Linux 2.6.8 2.6.8
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.4.20 2.4.20
Linux_kernel Linux 2.4.0 2.4.0
Linux_kernel Linux 2.6.0 2.6.0
Linux_kernel Linux 2.4.18 2.4.18
Suse_linux Suse 8.1 8.1
Enterprise_linux Redhat 2.1 2.1
Linux_kernel Linux 2.6.6 2.6.6
Linux_kernel Linux 2.6.0 2.6.0

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2023 Aqua Security Software Ltd.   Privacy Policy | Terms of Use