[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2002-1318Date: (C)2002-12-11   (M)2023-12-22


Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
http://marc.info/?l=bugtraq&m=103801986818076&w=2
http://marc.info/?l=bugtraq&m=103859045302448&w=2
20021204-01-I
SUNALERT-53580
BID-6210
CLA-2002:550
DSA-200
MDKSA-2002:081
N-019
N-023
RHSA-2002:266
SuSE-SA:2002:045
VU#958321
http://us1.samba.org/samba/whatsnew/samba-2.2.7.html
samba-password-change-bo(10683)

CPE    27
cpe:/a:hp:cifs-9000_server:a.01.09
cpe:/a:hp:cifs-9000_server:a.01.08
cpe:/a:samba:samba:2.2.6
cpe:/o:sgi:irix:6.5.3
...

© SecPod Technologies