| VID |
23085 |
| Severity |
30 |
| Port |
139 |
| Protocol |
TCP |
| Class |
Samba |
| Detailed Description |
The Samba server, according to its version number, has a denial of service vulnerability via the FindFirstPrintChangeNotify request.
Samba is an Open Source/Free Software package that provides seamless file and print services to SMB/CIFS clients. Samba 2.2.x prior to 2.2.11 and Samba 3.0.x prior to 3.0.6 are vulnerable to a denial of service attack, caused by improper handling the FindFirstPrintChangeNotify() request. A remote authenticated attacker from a Windows XP SP2 client could send a FindNextPrintChangeNotify() request, without initially issuing a FindNextPrintChangeNotify() request, to cause the Samba daemon (smbd) to crash.
* Note: If this check solely relied on the version number of the remote Samba server to assess this vulnerability, then this might be a false positive.
* References:
http://us4.samba.org/samba/news/#2.2.11
http://www.securiteam.com/unixfocus/5KP031PE0K.html
* Platforms Affected:
Samba 2.2.x prior to 2.2.11
Samba 3.0.x prior to 3.0.6
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of samba (3.0.6 or 2.2.11 or later), available from the Samba Web site at http://samba.org/samba/samba.html
For Trustix Secure Linux:
Upgrade to the latest samba package, as listed in Trustix Secure Linux Security Advisory #2004-0043 at http://www.trustix.net/errata/2004/0043/
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2004-0829 (CVE) |
| Related URL |
11055 (SecurityFocus) |
| Related URL |
17138 (ISS) |
|
