Remote Denial of Service Vulnerability in Samba by Samba Team
CVE-2004-0807

Currently unrated

Key Information:

Vendor: Samba
Status: Samba; Linux
Vendor: CVE Published:; 13 September 2004

What is CVE-2004-0807?

Certain versions of Samba, specifically 3.0.6 and earlier, contain a vulnerability that allows remote attackers to initiate a denial of service. This can occur through the use of specially crafted requests, which cause the Samba server to spawn new processes that enter an infinite loop. This leads to memory exhaustion and can severely impact the availability and functionality of the affected service.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.trustix.net/errata/2004/0046/

vendor-advisoryx_refsource_TRUSTIX

http://www.redhat.com/support/errata/RHSA-2004-467.html

vendor-advisoryx_refsource_REDHAT

EPSS Score

9% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 13, 2004
Vulnerability Reserved
Aug 25, 2004