CVE-2003-0196

Description

Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.

Affected products

• compaq / tru645.1_pk4_bl18 – 5.1_pk4_bl18
• compaq / tru645.1_pk5_bl19 – 5.1_pk5_bl19
• compaq / tru645.1_pk6_bl20 – 5.1_pk6_bl20
• compaq / tru645.1a – 5.1a
• compaq / tru645.1a_pk1_bl1 – 5.1a_pk1_bl1
• compaq / tru645.1a_pk2_bl2 – 5.1a_pk2_bl2
• compaq / tru645.1a_pk3_bl3 – 5.1a_pk3_bl3
• compaq / tru645.1b – 5.1b
• compaq / tru645.1b_pk1_bl1 – 5.1b_pk1_bl1
• compaq / tru644.0b – 4.0b
• compaq / tru644.0d – 4.0d
• compaq / tru644.0d_pk9_bl17 – 4.0d_pk9_bl17
• compaq / tru644.0f – 4.0f
• compaq / tru644.0f_pk6_bl17 – 4.0f_pk6_bl17
• compaq / tru644.0f_pk7_bl18 – 4.0f_pk7_bl18
• compaq / tru644.0g – 4.0g
• compaq / tru644.0g_pk3_bl17 – 4.0g_pk3_bl17
• compaq / tru645.0 – 5.0
• compaq / tru645.0_pk4_bl17 – 5.0_pk4_bl17
• compaq / tru645.0_pk4_bl18 – 5.0_pk4_bl18
• compaq / tru645.0a – 5.0a
• compaq / tru645.0a_pk3_bl17 – 5.0a_pk3_bl17
• compaq / tru645.0f – 5.0f
• compaq / tru645.1 – 5.1
• compaq / tru645.1_pk3_bl17 – 5.1_pk3_bl17
• HP / cifs-9000_servera.01.09.01 – a.01.09.01
• HP / cifs-9000_servera.01.09 – a.01.09
• HP / cifs-9000_servera.01.08.01 – a.01.08.01
• HP / cifs-9000_servera.01.08 – a.01.08
• HP / cifs-9000_servera.01.07 – a.01.07
• HP / cifs-9000_servera.01.06 – a.01.06
• HP / cifs-9000_servera.01.05 – a.01.05
• HP / cifs-9000_servera.01.09.02 – a.01.09.02
• HP / hp-ux10.01 – 10.01
• HP / hp-ux10.20 – 10.20
• HP / hp-ux10.24 – 10.24
• HP / hp-ux11.00 – 11.00
• HP / hp-ux11.04 – 11.04
• HP / hp-ux11.11 – 11.11
• HP / hp-ux11.20 – 11.20
• HP / hp-ux11.22 – 11.22
• Samba / Samba2.2.5 – 2.2.5
• Samba / Samba2.0.1 – 2.0.1
• Samba / Samba2.0.2 – 2.0.2
• Samba / Samba2.0.3 – 2.0.3
• Samba / Samba2.0.4 – 2.0.4
• Samba / Samba2.0.5 – 2.0.5
• Samba / Samba2.0.6 – 2.0.6
• Samba / Samba2.0.7 – 2.0.7
• Samba / Samba2.0.8 – 2.0.8
• Samba / Samba2.0.9 – 2.0.9
• Samba / Samba2.0.10 – 2.0.10
• Samba / Samba2.2.0 – 2.2.0
• Samba / Samba2.2.0a – 2.2.0a
• Samba / Samba2.2.1a – 2.2.1a
• Samba / Samba2.2.2 – 2.2.2
• Samba / Samba2.2.3 – 2.2.3
• Samba / Samba2.2.3a – 2.2.3a
• Samba / Samba2.2.4 – 2.2.4
• Samba / Samba2.0.0 – 2.0.0
• Samba / Samba2.2.6 – 2.2.6
• Samba / Samba2.2.7 – 2.2.7
• Samba / Samba2.2.7a – 2.2.7a
• Samba / Samba2.2.8 – 2.2.8
• samba-tng / samba-tng0.3.1 – 0.3.1
• samba-tng / samba-tng0.3 – 0.3
• sun / solaris8.0 – 8.0
• sun / solaris7.0 – 7.0
• sun / solaris2.6 – 2.6
• sun / solaris2.5.1 – 2.5.1
• sun / solaris2.5.1 – 2.5.1
• sun / solaris9.0 – 9.0
• sun / solaris9.0 – 9.0
• sun / sunos5.7 – 5.7
• sun / sunos5.8 – 5.8
• sun / sunos5.5.1 – 5.5.1
• sun / sunos

References

• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564
• VENDOR_ADVISORYhttp://www.debian.org/security/2003/dsa-280
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDKSA-2003:044
• MISChttp://www.redhat.com/support/errata/RHSA-2003-137.html
• MAILING_LISThttp://marc.info/?l=bugtraq&m=104973186901597&w=2
• MAILING_LISThttp://marc.info/?l=bugtraq&m=104974612519064&w=2