CVE-2004-0829

Severity

50%

Complexity

99%

Confidentiality

48%

smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2.

smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

Type

Samba

First reported 20 years ago

2004-12-31 05:00:00

Last updated 7 years ago

2017-07-11 01:30:00

Affected Software

Samba 1.9.17

1.9.17

Samba 1.9.17 p1

1.9.17

Samba 1.9.17 p2

1.9.17

Samba 1.9.17 p3

1.9.17

Samba 1.9.17 p4

1.9.17

Samba 1.9.17 p5

1.9.17

Samba 1.9.18

1.9.18

Samba 1.9.18 p1

1.9.18

Samba 1.9.18 p10

1.9.18

Samba 1.9.18 p2

1.9.18

Samba 1.9.18 p3

1.9.18

Samba 1.9.18 p4

1.9.18

Samba 1.9.18 p5

1.9.18

Samba 1.9.18 p6

1.9.18

Samba 1.9.18 p7

1.9.18

Samba 1.9.18 p8

1.9.18

Samba 2.0.0

2.0.0

Samba 2.0.1

2.0.1

Samba 2.0.2

2.0.2

Samba 2.0.3

2.0.3

Samba 2.0.4

2.0.4

Samba 2.0.5

2.0.5

Samba Samba 2.0.5a

2.0.5a

Samba 2.0.6

2.0.6

Samba 2.0.7

2.0.7

Samba 2.2.0

2.2.0

Samba 2.2.1

2.2.1

Samba 2.2.2

2.2.2

Samba 2.2.3

2.2.3

Samba Samba 2.2.3a

2.2.3a

Samba 2.2.4

2.2.4

Samba 2.2.5

2.2.5

Samba 2.2.6

2.2.6

Samba 2.2.7

2.2.7

Samba Samba 2.2.7a

2.2.7a

Samba 2.2.8

2.2.8

Samba Samba 2.2.8a

2.2.8a

Samba 2.2.9

2.2.9

Samba 2.2.10

2.2.10

References

http://samba.org/samba/history/samba-2.2.11.html

Patch

20040831 Samba FindNextPrintChangeNotify() Error Lets Remote Authenticated Users Crash smbd

Patch, Vendor Advisory

GLSA-200409-14

Vendor Advisory

2004-0043

Vendor Advisory

samba-findnextprintchangenotify-dos(17138)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.