Back to search
CVE-2010-2063
Published: Jun 17, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in the SMB1 packet chaining implementation in the chain_reply function in process.c in smbd in Samba 3.0.x before 3.3.13 allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted field in a packet.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
HPSBUX02657
vendor-advisory
x_refsource_HP
samba-smb1-code-execution(59481)
vdb-entry
x_refsource_XF
65518
vdb-entry
x_refsource_OSVDB
HPSBUX02609
vendor-advisory
x_refsource_HP
40884
vdb-entry
x_refsource_BID
[samba-announce] 20100616 Samba 3.3.13 Security Release Available for Download
mailing-list
x_refsource_MLIST
40210
third-party-advisory
x_refsource_SECUNIA
http://www.samba.org/samba/ftp/history/samba-3.3.13.html
x_refsource_CONFIRM
40145
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1507
vdb-entry
x_refsource_VUPEN
ADV-2010-1505
vdb-entry
x_refsource_VUPEN
SSRT100460
vendor-advisory
x_refsource_HP
40293
third-party-advisory
x_refsource_SECUNIA
DSA-2061
vendor-advisory
x_refsource_DEBIAN
USN-951-1
vendor-advisory
x_refsource_UBUNTU
MDVSA-2010:119
vendor-advisory
x_refsource_MANDRIVA
APPLE-SA-2010-08-24-1
vendor-advisory
x_refsource_APPLE
SSRT100147
vendor-advisory
x_refsource_HP
40221
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1504
vdb-entry
x_refsource_VUPEN
http://support.apple.com/kb/HT4312
x_refsource_CONFIRM
oval:org.mitre.oval:def:9859
vdb-entry
signature
x_refsource_OVAL
RHSA-2010:0488
vendor-advisory
x_refsource_REDHAT
SUSE-SR:2010:014
vendor-advisory
x_refsource_SUSE
ADV-2010-1486
vdb-entry
x_refsource_VUPEN
42319
third-party-advisory
x_refsource_SECUNIA
http://www.samba.org/samba/security/CVE-2010-2063.html
x_refsource_CONFIRM
oval:org.mitre.oval:def:12427
vdb-entry
signature
x_refsource_OVAL
1024107
vdb-entry
x_refsource_SECTRACK
ADV-2010-1517
vdb-entry
x_refsource_VUPEN
ADV-2010-3063
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:7115
vdb-entry
signature
x_refsource_OVAL
20100616 Samba 3.3.12 Memory Corruption Vulnerability
third-party-advisory
x_refsource_IDEFENSE
SSA:2010-169-01
vendor-advisory
x_refsource_SLACKWARE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now