mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
205 lines
6.8 KiB
JSON
205 lines
6.8 KiB
JSON
{
|
|
"id": "CVE-2002-2196",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2002-12-31T05:00:00.000",
|
|
"lastModified": "2008-09-05T20:32:35.087",
|
|
"vulnStatus": "Analyzed",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack."
|
|
}
|
|
],
|
|
"vendorComments": [
|
|
{
|
|
"organization": "Red Hat",
|
|
"comment": "This issue did not affect the versions of Samba as distributed with Red Hat Enterprise Linux 2.1, 3, or 4.",
|
|
"lastModified": "2006-08-30T00:00:00"
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "PARTIAL",
|
|
"baseScore": 7.5
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 6.4,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": true,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-119"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "2.2.4",
|
|
"matchCriteriaId": "F69ED4B5-C485-4996-8AAE-F3800D37170F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.17:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A3B50D9E-EA43-44BF-9176-610EC808B986"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.17:p1:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BCBBF662-40C3-4280-BE79-9D7C36A6DF5C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.17:p3:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BDD6A6AE-C636-4131-807B-59F7784B7AB7"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.17:p4:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8C6D63F5-B72C-445A-BC61-D52D6022481B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.17:p5:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1ADD724A-1747-4678-A659-0A528B728C66"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p1:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A3ABEA3A-8F88-4947-80A5-CF1459F5AC8F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p10:*:*:*:*:*:*",
|
|
"matchCriteriaId": "86F85E94-9F94-457A-A606-35DB558484A3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p2:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1ED4704B-2422-43C9-A2E0-9851F56D4CEC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p3:*:*:*:*:*:*",
|
|
"matchCriteriaId": "158D175A-E0D7-45EF-BDD2-D86F2E8F7766"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p4:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7854FCEF-D1F8-4DEC-A6CB-C4470899F71C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p5:*:*:*:*:*:*",
|
|
"matchCriteriaId": "36D8B675-C209-4D5A-8EA7-1B3515E930FC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p6:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4BCECF31-4C73-4ABA-9F84-D5DBA1DB1F50"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p7:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2C5A1382-D147-43E5-8DB7-93B7A3B9AA0E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:1.9.18:p8:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3A497A5D-96FC-490E-87EB-94C1BE7338A3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:2.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F681E4CC-B8D3-48A2-B93E-0363B22B059E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:2.0.5a:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2BDD0125-4C47-404A-9DC0-2E923C66B4D5"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:2.2.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "DCACECDD-40F1-4A9B-8B8A-20565FEE3627"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:2.2.1a:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "19F65FF3-71F8-4278-A823-A6E0FF65D9F1"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:2.2.3a:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "614547F5-9C3F-489B-9B72-91B0FF646CCC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:samba:samba:2.2a:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "CC2AE5A9-62C5-4DCE-85B3-16F48695B3B4"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://lists.samba.org/archive/samba-technical/2002-June/022075.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://rhn.redhat.com/errata/RHBA-2002-209.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.iss.net/security_center/static/10010.php",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/5587",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch"
|
|
]
|
|
}
|
|
]
|
|
} |