2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2007-0452" ,
"sourceIdentifier" : "secalert@redhat.com" ,
"published" : "2007-02-06T02:28:00.000" ,
2024-11-22 03:16:05 +00:00
"lastModified" : "2024-11-21T00:25:54.053" ,
2023-04-24 12:24:31 +02:00
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infinite loop."
} ,
{
"lang" : "es" ,
"value" : "smbd en Samba 3.0.6 hasta 3.0.23d permite a usuarios autenticados remotamente provocar una denegaci\u00f3n de servicio (agotamiento de memoria y CPU) renombrando un archivo de una forma que previene que una petici\u00f3n sea eliminada de la cola abierta referenciada, lo cual dispara un bucle infinito."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:L/Au:S/C:N/I:N/A:C" ,
2024-11-22 03:16:05 +00:00
"baseScore" : 6.8 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "SINGLE" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "NONE" ,
2024-11-22 03:16:05 +00:00
"availabilityImpact" : "COMPLETE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "MEDIUM" ,
"exploitabilityScore" : 8.0 ,
"impactScore" : 6.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "NVD-CWE-Other"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3D40F682-9F2E-465F-98F7-23E1036C74A2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.7:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9478CC84-802F-4960-ACAB-3700154E813F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.8:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "5BEA3806-E33A-49A6-99A4-095B4E543C43"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.9:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AA7D08FB-30B9-4E42-B831-21A0C095062C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.10:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "13E6C8A4-FA17-44EF-A447-C73108540B59"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.11:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "57D5EA00-CC2E-4E56-8297-A3C1CEDBBE06"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.12:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "50E05AD3-C7F0-421D-8C9B-604E553332E2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.13:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3A53517C-F12D-4D74-A722-5AE23598CEC4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.14a:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "42EB6115-CC45-4464-8400-D7E3A9402803"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.20:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F002F105-A911-4E56-8630-C287DC527E05"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.20a:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "D1936E19-9887-4E53-AA0C-738ABD4B97EE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.20b:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A2206C09-6A4B-4EC4-A206-E48EDF966913"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.21:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0B918306-8743-404D-A035-CC3997ADCC3C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.21a:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "43684906-D3AA-40FB-A75D-ED65C1DC9BB4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.21b:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "62E39538-4811-49DB-97CF-1F018C58BAE4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.21c:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C85D69FE-AF43-4B0E-A7A9-2D2C16426180"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.22:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "86347948-C08F-4F02-89A0-4F4A55CD4BA7"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.23:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A908DA9D-A8BD-46BA-A71F-BFDEC0A1341E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.23a:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7CA7905C-51A0-4A56-A6A5-330288613055"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.23b:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4AE85033-0658-4D60-8C7A-6E2BD63AFDCF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.23c:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4600AAA4-834D-4F63-8E9A-88CB555C029E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:samba:samba:3.0.23d:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "54FE8D2E-AF0D-4C84-A5BC-2CE6759B534C"
}
]
}
]
}
] ,
"references" : [
{
"url" : "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://fedoranews.org/cms/node/2579" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://fedoranews.org/cms/node/2580" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00943462" ,
"source" : "secalert@redhat.com"
} ,
2024-11-22 03:16:05 +00:00
{
"url" : "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00943462" ,
"source" : "secalert@redhat.com"
} ,
2023-04-24 12:24:31 +02:00
{
"url" : "http://lists.suse.com/archive/suse-security-announce/2007-Feb/0002.html" ,
"source" : "secalert@redhat.com"
} ,
2024-04-04 08:46:00 +00:00
{
"url" : "http://osvdb.org/33100" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24021" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24030" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24046" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24060" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24067" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24076" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24101" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24140" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24145" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24151" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24188" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24284" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://secunia.com/advisories/24792" ,
"source" : "secalert@redhat.com"
} ,
2023-04-24 12:24:31 +02:00
{
"url" : "http://securityreason.com/securityalert/2219" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://securitytracker.com/id?1017587" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.476916" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-66-200588-1" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://us1.samba.org/samba/security/CVE-2007-0452.html" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.debian.org/security/2007/dsa-1257" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.gentoo.org/security/en/glsa/glsa-200702-01.xml" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2007:034" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.redhat.com/support/errata/RHSA-2007-0060.html" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.redhat.com/support/errata/RHSA-2007-0061.html" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.securityfocus.com/archive/1/459167/100/0/threaded" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.securityfocus.com/archive/1/459365/100/0/threaded" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.securityfocus.com/bid/22395" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.trustix.org/errata/2007/0007" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.ubuntu.com/usn/usn-419-1" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.vupen.com/english/advisories/2007/0483" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "http://www.vupen.com/english/advisories/2007/1278" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/32301" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "https://issues.rpath.com/browse/RPL-1005" ,
"source" : "secalert@redhat.com"
} ,
{
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9758" ,
"source" : "secalert@redhat.com"
2024-11-22 03:16:05 +00:00
} ,
{
"url" : "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://fedoranews.org/cms/node/2579" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://fedoranews.org/cms/node/2580" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00943462" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00943462" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://lists.suse.com/archive/suse-security-announce/2007-Feb/0002.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://osvdb.org/33100" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24021" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24030" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24046" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24060" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24067" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24076" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24101" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24140" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24145" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24151" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24188" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24284" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://secunia.com/advisories/24792" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://securityreason.com/securityalert/2219" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://securitytracker.com/id?1017587" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.476916" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-66-200588-1" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://us1.samba.org/samba/security/CVE-2007-0452.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.debian.org/security/2007/dsa-1257" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.gentoo.org/security/en/glsa/glsa-200702-01.xml" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2007:034" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.redhat.com/support/errata/RHSA-2007-0060.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.redhat.com/support/errata/RHSA-2007-0061.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.securityfocus.com/archive/1/459167/100/0/threaded" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.securityfocus.com/archive/1/459365/100/0/threaded" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.securityfocus.com/bid/22395" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.trustix.org/errata/2007/0007" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.ubuntu.com/usn/usn-419-1" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.vupen.com/english/advisories/2007/0483" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.vupen.com/english/advisories/2007/1278" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/32301" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "https://issues.rpath.com/browse/RPL-1005" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9758" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
2023-04-24 12:24:31 +02:00
}
]
}
