CVE Vulnerabilities

CVE-2007-0452

Published: Feb 06, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:L/Au:S/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infinite loop.

Affected Software

Name Vendor Start Version End Version
Samba Samba 3.0.14a 3.0.14a
Samba Samba 3.0.8 3.0.8
Samba Samba 3.0.6 3.0.6
Samba Samba 3.0.21a 3.0.21a
Samba Samba 3.0.23 3.0.23
Samba Samba 3.0.20a 3.0.20a
Samba Samba 3.0.21b 3.0.21b
Samba Samba 3.0.9 3.0.9
Samba Samba 3.0.11 3.0.11
Samba Samba 3.0.7 3.0.7
Samba Samba 3.0.13 3.0.13
Samba Samba 3.0.20b 3.0.20b
Samba Samba 3.0.21 3.0.21
Samba Samba 3.0.21c 3.0.21c
Samba Samba 3.0.23b 3.0.23b
Samba Samba 3.0.12 3.0.12
Samba Samba 3.0.20 3.0.20
Samba Samba 3.0.10 3.0.10
Samba Samba 3.0.23d 3.0.23d
Samba Samba 3.0.23c 3.0.23c
Samba Samba 3.0.23a 3.0.23a
Samba Samba 3.0.22 3.0.22

References