CVE-2004-0686

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 27-07-2004 06:00

Last modified: - 29-08-2022 10:04

Total changes: - 2

Description

Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the "mangling method = hash" option is enabled in smb.conf, has unknown impact and attack vectors.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:N/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

None

Confidentiality

Low

Integrity

Privileges required

Scope

User interaction

5.0

Base score

10.0

2.9

Exploitability score

Impact score

Verification logic

Reference

RHSA-2004:259-Patch, Third Party Advisory
GLSA-200407-21-Third Party Advisory
MDKSA-2004:071-Broken Link
SUSE-SA:2004:022-Broken Link
2004-0039-Third Party Advisory
CLA-2004:851-Third Party Advisory
CLA-2004:854-Third Party Advisory
101584-Broken Link
57664-Broken Link
FLSA:2102-Mailing List, Third Party Advisory
20040722 TSSA-2004-014 - samba-Mailing List, Third Party Advisory
SSRT4782-Mailing List, Third Party Advisory
20040722 [OpenPKG-SA-2004.033] OpenPKG Security Advisory (samba)-Mailing List, Third Party Advisory
20040722 Security Release - Samba 3.0.5 and 2.2.10-Mailing List, Third Party Advisory
samba-mangling-method-bo(16786)-Third Party Advisory, VDB Entry
oval:org.mitre.oval:def:10461-Third Party Advisory

Keywords

CVE-2004-0686

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2004-0686

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures