CVE Vulnerabilities

CVE-2004-1154

Published: Jan 10, 2005 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Samba Samba 2.0.0 2.0.0
Samba Samba 2.0.1 2.0.1
Samba Samba 2.0.2 2.0.2
Samba Samba 2.0.3 2.0.3
Samba Samba 2.0.4 2.0.4
Samba Samba 2.0.5 2.0.5
Samba Samba 2.0.6 2.0.6
Samba Samba 2.0.7 2.0.7
Samba Samba 2.0.8 2.0.8
Samba Samba 2.0.9 2.0.9
Samba Samba 2.0.10 2.0.10
Samba Samba 2.2.0 2.2.0
Samba Samba 2.2.0a 2.2.0a
Samba Samba 2.2.1a 2.2.1a
Samba Samba 2.2.2 2.2.2
Samba Samba 2.2.3 2.2.3
Samba Samba 2.2.3a 2.2.3a
Samba Samba 2.2.4 2.2.4
Samba Samba 2.2.5 2.2.5
Samba Samba 2.2.6 2.2.6
Samba Samba 2.2.7 2.2.7
Samba Samba 2.2.7a 2.2.7a
Samba Samba 2.2.8 2.2.8
Samba Samba 2.2.8a 2.2.8a
Samba Samba 2.2.9 2.2.9
Samba Samba 2.2.11 2.2.11
Samba Samba 2.2.12 2.2.12
Samba Samba 2.2a 2.2a
Samba Samba 3.0.0 3.0.0
Samba Samba 3.0.1 3.0.1
Samba Samba 3.0.2 3.0.2
Samba Samba 3.0.2a 3.0.2a
Samba Samba 3.0.3 3.0.3
Samba Samba 3.0.4 3.0.4
Samba Samba 3.0.4 3.0.4
Samba Samba 3.0.5 3.0.5
Samba Samba 3.0.6 3.0.6
Samba Samba 3.0.7 3.0.7
Samba Samba 3.0.8 3.0.8
Samba Samba 3.0.9 3.0.9
Red Hat Enterprise Linux 2.1 RedHat samba *
Red Hat Enterprise Linux 2.1 RedHat samba *
Red Hat Enterprise Linux 3 RedHat samba-0:3.0.9-1.3E.1 *
Samba Ubuntu devel *

References