Definition


New Search

Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d) (2) RFNPCNEX (smb_io_notify_option_type_data) (3) LsarAddPrivilegesToAccount (lsa_io_privilege_set) (4) NetSetFileSecurity (sec_io_acl) or (5) LsarLookupSids/LsarLookupSids2 (lsa_io_trans_names).

oval:org.mitre.oval:def:11415

Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d) (2) RFNPCNEX (smb_io_notify_option_type_data) (3) LsarAddPrivilegesToAccount (lsa_io_privilege_set) (4) NetSetFileSecurity (sec_io_acl) or (5) LsarLookupSids/LsarLookupSids2 (lsa_io_trans_names).

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 3
  • CentOS Linux 4
  • Oracle Linux 4
  • CentOS Linux 3
  • Oracle Linux 5
  • Red Hat Enterprise Linux 4
  • Red Hat Enterprise Linux 5
Class:
vulnerability
Reference(s):
  • CVE-2007-2446
Product(s):