Oval Definition:oval:org.mitre.oval:def:10675
Revision Date:2013-04-29Version:11
Title:The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
Description:The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0082
Platform(s):CentOS Linux 3
Red Hat Enterprise Linux 3
Product(s):
Definition Synopsis
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • samba-common is earlier than 0:3.0.2-6.3E
  • OR samba-swat is earlier than 0:3.0.2-6.3E
  • OR samba-client is earlier than 0:3.0.2-6.3E
  • OR samba is earlier than 0:3.0.2-6.3E
    • BACK