CVE-2003-0201

Severity

99%

Complexity

99%

Confidentiality

165%

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 21 years ago

2003-05-05 04:00:00

Last updated 6 years ago

2018-10-30 16:26:00

Affected Software

Samba 2.0.0

2.0.0

Samba 2.0.1

2.0.1

Samba 2.0.2

2.0.2

Samba 2.0.3

2.0.3

Samba 2.0.4

2.0.4

Samba 2.0.5

2.0.5

Samba 2.0.6

2.0.6

Samba 2.0.7

2.0.7

Samba 2.0.8

2.0.8

Samba 2.0.9

2.0.9

Samba 2.0.10

2.0.10

Samba 2.2.0

2.2.0

Samba Samba 2.2.0a

2.2.0a

Samba Samba 2.2.1a

2.2.1a

Samba Samba 2.2.3a

2.2.3a

Samba 2.2.4

2.2.4

Samba 2.2.5

2.2.5

Samba 2.2.6

2.2.6

Samba 2.2.7

2.2.7

Samba Samba 2.2.7a

2.2.7a

Samba 2.2.8

2.2.8

Samba-TNG Samba-TNG 0.3

0.3

Samba-TNG Samba-TNG 0.3.1

0.3.1

Apple Mac OS X 10.2

10.2

Apple Mac OS X 10.2.1

10.2.1

Apple Mac OS X 10.2.2

10.2.2

Apple Mac OS X 10.2.3

10.2.3

Apple Mac OS X 10.2.4

10.2.4

Compaq Tru64 4.0b

4.0b

Compaq Tru64 4.0d

4.0d

Compaq Tru64 4.0d PK9_BL17

4.0d_pk9_bl17

Compaq Tru64 4.0f

4.0f

Compaq Tru64 4.0f PK6_BL17

4.0f_pk6_bl17

Compaq Tru64 4.0f PK7_BL18

4.0f_pk7_bl18

Compaq Tru64 4.0g

4.0g

Compaq Tru64 4.0g PK3_BL17

4.0g_pk3_bl17

Compaq Tru64 5.0

5.0

Compaq Tru64 5.0 PK4_BL17

5.0_pk4_bl17

Compaq Tru64 5.0 PK4_BL18

5.0_pk4_bl18

Compaq Tru64 5.0a

5.0a

Compaq Tru64 5.0a PK3_BL17

5.0a_pk3_bl17

Compaq Tru64 5.0f

5.0f

Compaq Tru64 5.1

5.1

Compaq Tru64 5.1 PK3_BL17

5.1_pk3_bl17

Compaq Tru64 5.1 PK4_BL18

5.1_pk4_bl18

Compaq Tru64 5.1 PK5_BL19

5.1_pk5_bl19

Compaq Tru64 5.1 PK6_BL20

5.1_pk6_bl20

Compaq Tru64 5.1a

5.1a

Compaq Tru64 5.1a PK1_BL1

5.1a_pk1_bl1

Compaq Tru64 5.1a PK2_BL2

5.1a_pk2_bl2

Compaq Tru64 5.1a PK3_BL3

5.1a_pk3_bl3

Compaq Tru64 5.1b

5.1b

Compaq Tru64 5.1b PK1_BL1

5.1b_pk1_bl1

HP HP-UX 10.01

10.01

HP HP-UX 10.20

10.20

HP HP-UX 10.24

10.24

HP-UX 11.00

11.00

HP HP-UX 11.04

11.04

HP-UX 11.11

11.11

HP-UX 11i v1.5

11.20

HP-UX 11i v1.6

11.22

Sun Solaris 2.6

2.6

Sun SunOS (formerly Solaris)

Sun Microsystems Solaris 2.5.1

5.5.1

Sun Microsystems Solaris 7

5.7

Sun SunOS (Solaris 8) 5.8

5.8

HP CIFS_9000 Server A.01.05

a.01.05

HP CIFS_9000 Server A.01.06

a.01.06

HP CIFS_9000 Server A.01.07

a.01.07

HP CIFS_9000 Server A.01.08

a.01.08

HP CIFS_9000 Server A.01.08.01

a.01.08.01

HP CIFS_9000 Server A.01.09

a.01.09

HP CIFS_9000 Server A.01.09.01

a.01.09.01

HP CIFS_9000 Server A.01.09.02

a.01.09.02

References

20030403-01-P

CLA-2003:624

20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise

20030407 Immunix Secured OS 7+ samba update

20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08

20030409 GLSA: samba (200304-02)

DSA-280

Patch, Vendor Advisory

http://www.digitaldefense.net/labs/advisories/DDI-1013.txt

VU#267873

US Government Resource

MDKSA-2003:044

SuSE-SA:2003:025

RHSA-2003:137

7294

Exploit, Patch, Vendor Advisory

oval:org.mitre.oval:def:2163

oval:org.mitre.oval:def:567

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.