CVE-2006-3403 — Samba vulnerability

9 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

29.8%

top 3.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba

Timeline

PublishedJul 12

Latest updateMay 3

Description

The smdb daemon (smbd/service.c) in Samba 3.0.1 through 3.0.22 allows remote attackers to cause a denial of service (memory consumption) via a large number of share connection requests.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/samba< samba 3.0.23a-1 (bookworm)

▶Debiansamba/samba< 3.0.23a-1+3

▶NVDsamba/samba27 versions+26

Patches

Patch: secunia.com ↗Patch: secunia.com ↗Patch: www.samba.org ↗

🔴Vulnerability Details

GHSA

GHSA-4x79-6w4j-gwx6: The smdb daemon (smbd/service↗2022-05-03

▶

OSV

CVE-2006-3403: The smdb daemon (smbd/service↗2006-07-12

▶

📋Vendor Advisories

Ubuntu

samba vulnerability↗2006-07-13

▶

Red Hat

security flaw↗2006-07-10

▶

Debian

CVE-2006-3403: samba - The smdb daemon (smbd/service.c) in Samba 3.0.1 through 3.0.22 allows remote att...↗2006

▶

💬Community

Bugzilla

CVE-2006-3403 security flaw↗2018-08-16

▶

Bugzilla

CVE-2006-3403 Samba denial of service↗2006-07-10

▶

Bugzilla

CVE-2006-3403 Samba denial of service↗2006-07-06

▶