Description
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
Affected products
- Apple / mac_os_x10.2 β 10.2
- Apple / mac_os_x10.2.4 β 10.2.4
- Apple / mac_os_x10.2.3 β 10.2.3
- Apple / mac_os_x10.2.2 β 10.2.2
- Apple / mac_os_x10.2.1 β 10.2.1
- compaq / tru645.0_pk4_bl17 β 5.0_pk4_bl17
- compaq / tru644.0d_pk9_bl17 β 4.0d_pk9_bl17
- compaq / tru644.0f β 4.0f
- compaq / tru644.0f_pk6_bl17 β 4.0f_pk6_bl17
- compaq / tru644.0f_pk7_bl18 β 4.0f_pk7_bl18
- compaq / tru644.0g β 4.0g
- compaq / tru644.0g_pk3_bl17 β 4.0g_pk3_bl17
- compaq / tru645.0 β 5.0
- compaq / tru645.0_pk4_bl18 β 5.0_pk4_bl18
- compaq / tru645.1b_pk1_bl1 β 5.1b_pk1_bl1
- compaq / tru645.1b β 5.1b
- compaq / tru645.1a_pk3_bl3 β 5.1a_pk3_bl3
- compaq / tru645.1a_pk2_bl2 β 5.1a_pk2_bl2
- compaq / tru645.1a_pk1_bl1 β 5.1a_pk1_bl1
- compaq / tru645.1a β 5.1a
- compaq / tru645.1_pk6_bl20 β 5.1_pk6_bl20
- compaq / tru645.1_pk5_bl19 β 5.1_pk5_bl19
- compaq / tru645.1_pk4_bl18 β 5.1_pk4_bl18
- compaq / tru645.1_pk3_bl17 β 5.1_pk3_bl17
- compaq / tru645.1 β 5.1
- compaq / tru645.0f β 5.0f
- compaq / tru645.0a_pk3_bl17 β 5.0a_pk3_bl17
- compaq / tru645.0a β 5.0a
- compaq / tru644.0b β 4.0b
- compaq / tru644.0d β 4.0d
- HP / cifs-9000_servera.01.07 β a.01.07
- HP / cifs-9000_servera.01.06 β a.01.06
- HP / cifs-9000_servera.01.05 β a.01.05
- HP / cifs-9000_servera.01.08.01 β a.01.08.01
- HP / cifs-9000_servera.01.09 β a.01.09
- HP / cifs-9000_servera.01.09.01 β a.01.09.01
- HP / cifs-9000_servera.01.09.02 β a.01.09.02
- HP / cifs-9000_servera.01.08 β a.01.08
- HP / hp-ux11.22 β 11.22
- HP / hp-ux10.01 β 10.01
- HP / hp-ux10.20 β 10.20
- HP / hp-ux10.24 β 10.24
- HP / hp-ux11.00 β 11.00
- HP / hp-ux11.04 β 11.04
- HP / hp-ux11.11 β 11.11
- HP / hp-ux11.20 β 11.20
- Samba / Samba2.2.4 β 2.2.4
- Samba / Samba2.2.3a β 2.2.3a
- Samba / Samba2.2.1a β 2.2.1a
- Samba / Samba2.2.0a β 2.2.0a
- Samba / Samba2.2.0 β 2.2.0
- Samba / Samba2.0.10 β 2.0.10
- Samba / Samba2.0.9 β 2.0.9
- Samba / Samba2.0.7 β 2.0.7
- Samba / Samba2.0.6 β 2.0.6
- Samba / Samba2.0.5 β 2.0.5
- Samba / Samba2.0.4 β 2.0.4
- Samba / Samba2.0.3 β 2.0.3
- Samba / Samba2.0.2 β 2.0.2
- Samba / Samba2.0.1 β 2.0.1
- Samba / Samba2.0.0 β 2.0.0
- Samba / Samba2.0.8 β 2.0.8
- Samba / Samba2.2.8 β 2.2.8
- Samba / Samba2.2.7a β 2.2.7a
- Samba / Samba2.2.7 β 2.2.7
- Samba / Samba2.2.6 β 2.2.6
- Samba / Samba2.2.5 β 2.2.5
- samba-tng / samba-tng0.3.1 β 0.3.1
- samba-tng / samba-tng0.3 β 0.3
- sun / solaris9.0 β 9.0
- sun / solaris9.0 β 9.0
- sun / solaris2.6 β 2.6
- sun / solaris7.0 β 7.0
- sun / solaris8.0 β 8.0
- sun / solaris9.0 β 9.0
- sun / solaris2.5.1 β 2.5.1
- sun / solaris2.5.1 β 2.5.1
- sun / sunos5.7 β 5.7
- sun / sunos5.8 β 5.8
- sun / sunos5.5.1 β 5.5.1
- sun / sunos
References
- MISChttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624
- MAILING_LISThttp://marc.info/?l=bugtraq&m=104981682014565&w=2
- VENDOR_ADVISORYftp://patches.sgi.com/support/free/security/advisories/20030403-01-P
- VENDOR_ADVISORYhttp://www.novell.com/linux/security/advisories/2003_025_samba.html
- MISChttp://www.securityfocus.com/bid/7294
- VENDOR_ADVISORYhttp://www.digitaldefense.net/labs/advisories/DDI-1013.txt
- MAILING_LISThttp://marc.info/?l=bugtraq&m=104972664226781&w=2
- VENDOR_ADVISORYhttp://www.debian.org/security/2003/dsa-280
- MAILING_LISThttp://marc.info/?l=bugtraq&m=104994564212488&w=2
- MISChttp://www.kb.cert.org/vuls/id/267873
- VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDKSA-2003:044
- MISChttp://www.redhat.com/support/errata/RHSA-2003-137.html
- MAILING_LISThttp://marc.info/?l=bugtraq&m=104974612519064&w=2
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163