QwikSec

Security Database

CVE

CWE

Training

CVE-2007-5398

Published: Nov 16, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Stack-based buffer overflow in the reply_netbios_packet function in nmbd/nmbd_packets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

http://secunia.com/secunia_research/2007-90/advisory/

x_refsource_MISC

oval:org.mitre.oval:def:10230

vdb-entry

signature

x_refsource_OVAL

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_CERT

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

SSA:2007-320-01

vendor-advisory

x_refsource_SLACKWARE

vendor-advisory

x_refsource_HP

oval:org.mitre.oval:def:5811

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_HP

vendor-advisory

x_refsource_HP

third-party-advisory

x_refsource_SECUNIA

20080108 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages

mailing-list

x_refsource_BUGTRAQ

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

[Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_HP

APPLE-SA-2007-12-17

vendor-advisory

x_refsource_APPLE

vendor-advisory

x_refsource_MANDRIVA

third-party-advisory

x_refsource_SECUNIA

http://docs.info.apple.com/article.html?artnum=307179

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

https://issues.rpath.com/browse/RPL-1894

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

20071115 Secunia Research: Samba "reply_netbios_packet()" Buffer OverflowVulnerability

mailing-list

x_refsource_BUGTRAQ

FEDORA-2007-3402

vendor-advisory

x_refsource_FEDORA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SREASON

vendor-advisory

x_refsource_SUNALERT

http://us1.samba.org/samba/security/CVE-2007-5398.html

x_refsource_CONFIRM

http://www.vmware.com/security/advisories/VMSA-2008-0001.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_VUPEN

samba-replynetbiospacket-bo(38502)

vdb-entry

x_refsource_XF

SUSE-SA:2007:065

vendor-advisory

x_refsource_SUSE

20080123 UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.