[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250108

 
 

909

 
 

196064

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0600Date: (C)2004-07-27   (M)2023-12-22


Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
2004-0039
http://marc.info/?l=bugtraq&m=109053195818351&w=2
http://marc.info/?l=bugtraq&m=109052647928375&w=2
http://marc.info/?l=bugtraq&m=109051340810458&w=2
http://marc.info/?l=bugtraq&m=109052891507263&w=2
http://marc.info/?l=bugtraq&m=109051533021376&w=2
CLA-2004:851
CLA-2004:854
GLSA-200407-21
MDKSA-2004:071
RHSA-2004:259
SUSE-SA:2004:022
oval:org.mitre.oval:def:11445
samba-swat-base64-bo(16785)

CPE    7
cpe:/a:samba:samba:3.0.2a
cpe:/a:samba:samba:3.0.3
cpe:/o:trustix:secure_linux:1.5
cpe:/a:samba:samba:3.0.4
...

© SecPod Technologies