2017-10-16 12:31:07 -04:00
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2007-6015" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
"value" : "Stack-based buffer overflow in the send_mailslot function in nmbd in Samba 3.0.0 through 3.0.27a, when the \"domain logons\" option is enabled, allows remote attackers to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string following an offset username in a SAMLOGON logon request."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
2018-04-05 09:33:01 -04:00
"name" : "20071210 Secunia Research: Samba \"send_mailslot()\" Buffer OverflowVulnerability" ,
"refsource" : "BUGTRAQ" ,
2018-10-15 17:03:25 -04:00
"url" : "http://www.securityfocus.com/archive/1/484818/100/0/threaded"
2017-10-16 12:31:07 -04:00
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "20071210 [SECURITY] Buffer overrun in send_mailslot()" ,
"refsource" : "BUGTRAQ" ,
2018-10-15 17:03:25 -04:00
"url" : "http://www.securityfocus.com/archive/1/484825/100/0/threaded"
2017-10-16 12:31:07 -04:00
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "20071210 rPSA-2007-0261-1 samba samba-swat" ,
"refsource" : "BUGTRAQ" ,
2018-10-15 17:03:25 -04:00
"url" : "http://www.securityfocus.com/archive/1/484827/100/0/threaded"
2017-10-16 12:31:07 -04:00
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "20071214 POC for samba send_mailslot()" ,
"refsource" : "BUGTRAQ" ,
2018-10-15 17:03:25 -04:00
"url" : "http://www.securityfocus.com/archive/1/485144/100/0/threaded"
2017-10-16 12:31:07 -04:00
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates" ,
"refsource" : "BUGTRAQ" ,
2018-10-15 17:03:25 -04:00
"url" : "http://www.securityfocus.com/archive/1/488457/100/0/threaded"
2017-10-16 12:31:07 -04:00
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates" ,
"refsource" : "MLIST" ,
2017-10-16 12:31:07 -04:00
"url" : "http://lists.vmware.com/pipermail/security-announce/2008/000005.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "http://secunia.com/secunia_research/2007-99/advisory/" ,
"refsource" : "MISC" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/secunia_research/2007-99/advisory/"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "http://www.samba.org/samba/security/CVE-2007-6015.html" ,
"refsource" : "CONFIRM" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.samba.org/samba/security/CVE-2007-6015.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "http://bugs.gentoo.org/show_bug.cgi?id=200773" ,
"refsource" : "CONFIRM" ,
2017-10-16 12:31:07 -04:00
"url" : "http://bugs.gentoo.org/show_bug.cgi?id=200773"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "http://support.avaya.com/elmodocs2/security/ASA-2007-520.htm" ,
"refsource" : "CONFIRM" ,
2017-10-16 12:31:07 -04:00
"url" : "http://support.avaya.com/elmodocs2/security/ASA-2007-520.htm"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "https://issues.rpath.com/browse/RPL-1976" ,
"refsource" : "CONFIRM" ,
2017-10-16 12:31:07 -04:00
"url" : "https://issues.rpath.com/browse/RPL-1976"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "http://docs.info.apple.com/article.html?artnum=307430" ,
"refsource" : "CONFIRM" ,
2017-10-16 12:31:07 -04:00
"url" : "http://docs.info.apple.com/article.html?artnum=307430"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "APPLE-SA-2008-02-11" ,
"refsource" : "APPLE" ,
2017-10-16 12:31:07 -04:00
"url" : "http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "DSA-1427" ,
"refsource" : "DEBIAN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.debian.org/security/2007/dsa-1427"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "FEDORA-2007-4269" ,
"refsource" : "FEDORA" ,
2017-10-16 12:31:07 -04:00
"url" : "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00304.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "FEDORA-2007-4275" ,
"refsource" : "FEDORA" ,
2017-10-16 12:31:07 -04:00
"url" : "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00308.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "GLSA-200712-10" ,
"refsource" : "GENTOO" ,
2017-10-16 12:31:07 -04:00
"url" : "http://security.gentoo.org/glsa/glsa-200712-10.xml"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "HPSBUX02316" ,
"refsource" : "HP" ,
2017-10-16 12:31:07 -04:00
"url" : "http://marc.info/?l=bugtraq&m=120524782005154&w=2"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "SSRT071495" ,
"refsource" : "HP" ,
2017-10-16 12:31:07 -04:00
"url" : "http://marc.info/?l=bugtraq&m=120524782005154&w=2"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "HPSBUX02341" ,
"refsource" : "HP" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01475657"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "SSRT080075" ,
"refsource" : "HP" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01475657"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "MDKSA-2007:244" ,
"refsource" : "MANDRIVA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2007:244"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "RHSA-2007:1114" ,
"refsource" : "REDHAT" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.redhat.com/support/errata/RHSA-2007-1114.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "RHSA-2007:1117" ,
"refsource" : "REDHAT" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.redhat.com/support/errata/RHSA-2007-1117.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "SSA:2007-344-01" ,
"refsource" : "SLACKWARE" ,
2017-10-16 12:31:07 -04:00
"url" : "http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.451554"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "238251" ,
"refsource" : "SUNALERT" ,
2017-10-16 12:31:07 -04:00
"url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-26-238251-1"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "1019295" ,
"refsource" : "SUNALERT" ,
2017-10-16 12:31:07 -04:00
"url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019295.1-1"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "SUSE-SA:2007:068" ,
"refsource" : "SUSE" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.novell.com/linux/security/advisories/2007_68_samba.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "USN-556-1" ,
"refsource" : "UBUNTU" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.ubuntu.com/usn/usn-556-1"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "TA08-043B" ,
"refsource" : "CERT" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.us-cert.gov/cas/techalerts/TA08-043B.html"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "VU#438395" ,
"refsource" : "CERT-VN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.kb.cert.org/vuls/id/438395"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "26791" ,
"refsource" : "BID" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.securityfocus.com/bid/26791"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "oval:org.mitre.oval:def:5605" ,
"refsource" : "OVAL" ,
2017-10-16 12:31:07 -04:00
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5605"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "oval:org.mitre.oval:def:11572" ,
"refsource" : "OVAL" ,
2017-10-16 12:31:07 -04:00
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11572"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "ADV-2007-4153" ,
"refsource" : "VUPEN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.vupen.com/english/advisories/2007/4153"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "ADV-2008-0495" ,
"refsource" : "VUPEN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.vupen.com/english/advisories/2008/0495/references"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "ADV-2008-0637" ,
"refsource" : "VUPEN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.vupen.com/english/advisories/2008/0637"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "ADV-2008-0859" ,
"refsource" : "VUPEN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.vupen.com/english/advisories/2008/0859/references"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "ADV-2008-1712" ,
"refsource" : "VUPEN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.vupen.com/english/advisories/2008/1712/references"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "ADV-2008-1908" ,
"refsource" : "VUPEN" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.vupen.com/english/advisories/2008/1908"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "1019065" ,
"refsource" : "SECTRACK" ,
2017-10-16 12:31:07 -04:00
"url" : "http://www.securitytracker.com/id?1019065"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "27760" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/27760"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "27894" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/27894"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "27977" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/27977"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "27993" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/27993"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "27999" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/27999"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28003" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28003"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28028" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28028"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28029" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28029"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28067" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28067"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28089" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28089"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28037" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28037"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "28891" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/28891"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "29032" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/29032"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "29341" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/29341"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "30484" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/30484"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "30835" ,
"refsource" : "SECUNIA" ,
2017-10-16 12:31:07 -04:00
"url" : "http://secunia.com/advisories/30835"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "3438" ,
"refsource" : "SREASON" ,
2017-10-16 12:31:07 -04:00
"url" : "http://securityreason.com/securityalert/3438"
} ,
{
2018-04-05 09:33:01 -04:00
"name" : "samba-sendmailslot-bo(38965)" ,
"refsource" : "XF" ,
2017-10-16 12:31:07 -04:00
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/38965"
}
]
}
}
