CVE-2003-0085

Published: Mar 31, 2003Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.

Affected (29)

Products: Samba: Samba · Hp: Cifs 9000 Server

1 product

1 product

Cifs 9000 Server

Configuration A

22 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	Version 2.0.0
Samba Samba	Version 2.0.10
Samba Samba	Version 2.0.1
Samba Samba	Version 2.0.2
Samba Samba	Version 2.0.3
Samba Samba	Version 2.0.4
Samba Samba	Version 2.0.5
Samba Samba	Version 2.0.6
Samba Samba	Version 2.0.7
Samba Samba	Version 2.0.8
Samba Samba	Version 2.0.9
Samba Samba	Version 2.2.0
Samba Samba	Version 2.2.0a
Samba Samba	Version 2.2.1a
Samba Samba	Version 2.2.2
Samba Samba	Version 2.2.3
Samba Samba	Version 2.2.3a
Samba Samba	Version 2.2.4
Samba Samba	Version 2.2.5
Samba Samba	Version 2.2.6
Samba Samba	Version 2.2.7
Samba Samba	Version 2.2.7a

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Hp Cifs 9000 Server	Version a.01.05
Hp Cifs 9000 Server	Version a.01.06
Hp Cifs 9000 Server	Version a.01.07
Hp Cifs 9000 Server	Version a.01.08.01
Hp Cifs 9000 Server	Version a.01.08
Hp Cifs 9000 Server	Version a.01.09.01
Hp Cifs 9000 Server	Version a.01.09

References (38)

ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I (unsafe URL)

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=104792646416629&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=104792723017768&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=104801012929374&w=2

Source: cve@mitre.org

http://secunia.com/advisories/8299

Source: cve@mitre.org

http://secunia.com/advisories/8303

Source: cve@mitre.org

http://www.debian.org/security/2003/dsa-262

Source: cve@mitre.org

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/298233

Source: cve@mitre.org

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2003:032

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2003_016_samba.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2003-095.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2003-096.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/316165/30/25370/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/316165/30/25370/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/317145/30/25220/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/317145/30/25220/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/7106

Source: cve@mitre.org

PatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552

Source: cve@mitre.org

ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=104792646416629&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=104792723017768&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=104801012929374&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/8299

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/8303

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2003/dsa-262

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/298233

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2003:032

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2003_016_samba.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2003-095.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2003-096.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/316165/30/25370/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/316165/30/25370/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/317145/30/25220/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/317145/30/25220/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/7106

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.