CVE-2004-0808 — Improper Handling of Length Parameter Inconsistency in Samba

CWE-130 — Improper Handling of Length Parameter Inconsistency7 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

7.9%

top 7.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba

Timeline

PublishedDec 31

Latest updateApr 29

Description

The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures that are provided.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/samba< samba 3.0.7 (bookworm)

▶Debiansamba/samba< 3.0.7+3

▶NVDsamba/samba8 versions+7

Patches

Patch: distro.conectiva.com.br ↗Patch: www.gentoo.org ↗Patch: www.idefense.com ↗

🔴Vulnerability Details

GHSA

GHSA-23gc-7p36-fm6g: The process_logon_packet function in the nmbd server for Samba 3↗2022-04-29

▶

OSV

CVE-2004-0808: The process_logon_packet function in the nmbd server for Samba 3↗2004-12-31

▶

📋Vendor Advisories

Red Hat

security flaw↗2004-09-13

▶

Debian

CVE-2004-0808: samba - The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier...↗2004

▶

📐Framework References

CWE

Improper Handling of Length Parameter Inconsistency↗

▶

💬Community

Bugzilla

CVE-2004-0808 security flaw↗2018-08-16

▶