FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-2447

This CVE name corresponds to:

Entered Topic
2007-05-16 samba -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-2447 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-2447
Phase Assigned(20070502)

Description

The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled, and allows remote authenticated users to execute commands via shell metacharacters involving other MS-RPC functions in the (2) remote printer and (3) file share management.

References

Source Reference
IDEFENSE 20070514 Samba SAMR Change Password Remote Command Injection Vulnerability
BUGTRAQ 20070513 [SAMBA-SECURITY] CVE-2007-2447: Remote Command Injection Vulnerability
BUGTRAQ 20070515 FLEA-2007-0017-1: samba
FULLDISC 20070920 VMSA-2007-0006 Critical security updates for all supported versions of VMware ESX Server, VMware Server, VMware Workstation, VMware ACE, and VMware Player
CONFIRM http://www.samba.org/samba/security/CVE-2007-2447.html
CONFIRM https://issues.rpath.com/browse/RPL-1366
CONFIRM http://docs.info.apple.com/article.html?artnum=306172
CONFIRM http://www.xerox.com/downloads/usa/en/c/cert_XRX08_001.pdf
APPLE APPLE-SA-2007-07-31
DEBIAN DSA-1291
GENTOO GLSA-200705-15
HP HPSBUX02218
HP SSRT071424
HP HPSBTU02218
MANDRIVA MDKSA-2007:104
OPENPKG OpenPKG-SA-2007.012
REDHAT RHSA-2007:0354
SLACKWARE SSA:2007-134-01
SUNALERT 102964
SUNALERT 200588
SUSE SUSE-SA:2007:031
SUSE SUSE-SR:2007:014
TRUSTIX 2007-0017
UBUNTU USN-460-1
CERT-VN VU#268336
BID 23972
BID 25159
OVAL oval:org.mitre.oval:def:10062
VUPEN ADV-2007-1805
VUPEN ADV-2007-2079
VUPEN ADV-2007-2210
VUPEN ADV-2007-2281
VUPEN ADV-2007-2732
VUPEN ADV-2007-3229
VUPEN ADV-2008-0050
OSVDB 34700
SECTRACK 1018051
SECUNIA 25241
SECUNIA 25246
SECUNIA 25256
SECUNIA 25257
SECUNIA 25232
SECUNIA 25251
SECUNIA 25270
SECUNIA 25259
SECUNIA 25255
SECUNIA 25289
SECUNIA 25567
SECUNIA 25675
SECUNIA 25772
SECUNIA 26083
SECUNIA 26235
SECUNIA 26909
SECUNIA 27706
SECUNIA 28292
SREASON 2700

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.