Oval Definition:	oval:org.mitre.oval:def:10020
Revision Date: 2013-04-29 Version: 12 Title: Heap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response. Description: Heap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-1105 Platform(s): CentOS Linux 3 CentOS Linux 4 CentOS Linux 5 Oracle Linux 4 Oracle Linux 5 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Product(s): Definition Synopsis OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 OR CentOS Linux 3.x AND Configuration section samba-common is earlier than 0:3.0.9-1.3E.15 OR samba-swat is earlier than 0:3.0.9-1.3E.15 OR samba-client is earlier than 0:3.0.9-1.3E.15 OR samba is earlier than 0:3.0.9-1.3E.15 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 OR CentOS Linux 4.x OR Oracle Linux 4.x AND Configuration section samba-common is earlier than 0:3.0.25b-1.el4_6.5 OR samba-swat is earlier than 0:3.0.25b-1.el4_6.5 OR samba-client is earlier than 0:3.0.25b-1.el4_6.5 OR samba is earlier than 0:3.0.25b-1.el4_6.5 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x OR Oracle Linux 5.x AND Configuration section samba-common is earlier than 0:3.0.28-1.el5_2.1 OR samba-swat is earlier than 0:3.0.28-1.el5_2.1 OR samba-client is earlier than 0:3.0.28-1.el5_2.1 OR samba is earlier than 0:3.0.28-1.el5_2.1
BACK