CVE-2004-0686

Published: Jul 27, 2004Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the "mangling method = hash" option is enabled in smb.conf, has unknown impact and attack vectors.

Affected (5)

Products: Samba: Samba · Trustix: Secure Linux

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	From 2.2.0 to 2.2.10
Samba Samba	From 3.0.0 to 3.0.5

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Trustix Secure Linux	Version 1.5
Trustix Secure Linux	Version 2.0
Trustix Secure Linux	Version 2.1

References (32)

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000851

Source: cve@mitre.org

Third Party Advisory

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000854

Source: cve@mitre.org

Third Party Advisory

http://marc.info/?l=bugtraq&m=109051340810458&w=2

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=109051533021376&w=2

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=109052891507263&w=2

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=109094272328981&w=2

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=109785827607823&w=2

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-26-101584-1

Source: cve@mitre.org

Broken Link

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57664-1

Source: cve@mitre.org

Broken Link

http://www.gentoo.org/security/en/glsa/glsa-200407-21.xml

Source: cve@mitre.org

Third Party Advisory

http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:071

Source: cve@mitre.org

Broken Link

http://www.novell.com/linux/security/advisories/2004_22_samba.html

Source: cve@mitre.org

Broken Link

http://www.redhat.com/support/errata/RHSA-2004-259.html

Source: cve@mitre.org

PatchThird Party Advisory

http://www.trustix.org/errata/2004/0039/

Source: cve@mitre.org

Third Party Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16786

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10461

Source: cve@mitre.org

Third Party Advisory

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000851