[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-2906Date: (C)2009-10-07   (M)2023-12-22


smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock break notification reply packet.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.0
Exploit Score: 8.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SUNALERT-1021111
SECTRACK-1022976
http://www.securityfocus.com/archive/1/507856/100/0/threaded
BID-36573
SECUNIA-36893
SECUNIA-36918
SECUNIA-36937
SECUNIA-36953
SECUNIA-37428
OSVDB-58519
ADV-2009-2810
APPLE-SA-2010-03-29-1
FEDORA-2009-10172
FEDORA-2009-10180
SSA:2009-276-01
SUSE-SR:2009:017
USN-839-1
http://news.samba.org/releases/3.0.37/
http://news.samba.org/releases/3.2.15/
http://news.samba.org/releases/3.3.8/
http://news.samba.org/releases/3.4.2/
http://samba.org/samba/security/CVE-2009-2906.html
http://support.apple.com/kb/HT4077
http://wiki.rpath.com/Advisories:rPSA-2009-0145
oval:org.mitre.oval:def:7090
oval:org.mitre.oval:def:9944
samba-smb-dos(53575)

CWE    1
CWE-835
OVAL    17
oval:org.secpod.oval:def:202162
oval:org.secpod.oval:def:202044
oval:org.secpod.oval:def:202797
oval:org.secpod.oval:def:202017
...

© SecPod Technologies