Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2004-1154

Published

19 years ago

Last Modified

5 years ago

CVSSv2.0 Severity

High

Impact Analysis

Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow..

CVSSv2.0 Score

Severity: High
Base Score: 10/10
Exploit Score: 10/10
Access Vector: Network
Access Complexity: Low
Authentication Required: None
Impact Score: 10/10
Confidentiality Impact: Complete
Availability Impact: Complete
Integrity Impact: Complete

Products Affected

CPE	Affected	Vulnerable	Excluding
cpe:2.3:a:samba:samba:2.2.1a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.3:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.10:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.12:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.8:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.1:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.3a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.2:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.2a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.5:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.8a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.6:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.4:rc1::::::	Yes	-	-
cpe:2.3:a:samba:samba:2.2.9:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.3:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.6:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.0:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.11:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.9:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.4:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.7:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.7a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.4:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.9:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.3:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.6:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.8:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.2:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.0a:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.7:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.8:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.2:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.5:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.0:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.0.0:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.5:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:2.2.7:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.4:::::::*	Yes	-	-
cpe:2.3:a:samba:samba:3.0.1:::::::*	Yes	-	-
cpe:2.3:o:suse:suse_linux:9.0::enterprise_server:::::	Yes	-	-
cpe:2.3:o:redhat:fedora_core:core_2.0:::::::*	Yes	-	-
cpe:2.3:o:trustix:secure_linux:2.0:::::::*	Yes	-	-
cpe:2.3:o:suse:suse_linux:9.2:::::::*	Yes	-	-
cpe:2.3:o:suse:suse_linux:9.0:::::::*	Yes	-	-
cpe:2.3:o:suse:suse_linux:8.2:::::::*	Yes	-	-
cpe:2.3:o:suse:suse_linux:1.0::desktop:::::	Yes	-	-
cpe:2.3:o:suse:suse_linux:9.0::x86_64:::::	Yes	-	-
cpe:2.3:o:suse:suse_linux:9.1:::::::*	Yes	-	-
cpe:2.3:o:trustix:secure_linux:2.1:::::::*	Yes	-	-
cpe:2.3:o:trustix:secure_linux:2.2:::::::*	Yes	-	-
cpe:2.3:o:redhat:fedora_core:core_3.0:::::::*	Yes	-	-
cpe:2.3:o:suse:suse_linux:8.1:::::::*	Yes	-	-

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2004-1154

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

CVSSv2.0 Score

Products Affected

References

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2004-1154

CVE information

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

Description

CVSSv2.0 Score

Products Affected

References