Oval Definition:oval:org.mitre.oval:def:827
Revision Date:2010-09-20Version:22
Title:Samba mksmboasswd Disabled Account Creation Vulnerability
Description:The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0082
Platform(s):Red Hat Enterprise Linux 3
Product(s):Samba 3.0.0 and 3.0.1
Definition Synopsis
  • Software section
  • Red Hat Enterprise 3 is installed
  • AND ix86 architecture
  • AND samba version is less than 3.0.2-6.3E
  • AND Configuration section
  • smbd is listening on the network
  • BACK