FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-4572

This CVE name corresponds to:

Entered Topic
2007-11-21 samba -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-4572 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-4572
Phase Assigned(20070828)

Description

Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests.

References

Source Reference
BUGTRAQ 20080108 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages
BUGTRAQ 20080123 UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages
MLIST [Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages
CONFIRM http://us1.samba.org/samba/security/CVE-2007-4572.html
CONFIRM https://issues.rpath.com/browse/RPL-1894
CONFIRM http://docs.info.apple.com/article.html?artnum=307179
CONFIRM http://www.vmware.com/security/advisories/VMSA-2008-0001.html
APPLE APPLE-SA-2007-12-17
DEBIAN DSA-1409
FEDORA FEDORA-2007-3402
GENTOO GLSA-200711-29
HP HPSBUX02316
HP SSRT071495
HP HPSBUX02341
HP SSRT080075
MANDRIVA MDKSA-2007:224
REDHAT RHSA-2007:1013
REDHAT RHSA-2007:1016
REDHAT RHSA-2007:1017
SLACKWARE SSA:2007-320-01
SUNALERT 237764
SUSE SUSE-SA:2007:065
UBUNTU USN-544-1
UBUNTU USN-544-2
UBUNTU USN-617-1
CERT TA07-352A
BID 26454
OVAL oval:org.mitre.oval:def:5643
OVAL oval:org.mitre.oval:def:11132
VUPEN ADV-2007-3869
VUPEN ADV-2007-4238
VUPEN ADV-2008-0064
VUPEN ADV-2008-0859
VUPEN ADV-2008-1712
VUPEN ADV-2008-1908
SECTRACK 1018954
SECUNIA 27450
SECUNIA 27679
SECUNIA 27682
SECUNIA 27691
SECUNIA 27701
SECUNIA 27720
SECUNIA 27731
SECUNIA 27787
SECUNIA 27927
SECUNIA 28136
SECUNIA 28368
SECUNIA 29341
SECUNIA 30484
SECUNIA 30736
SECUNIA 30835
XF samba-nmbd-bo(38501)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.