Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-4124Integer Overflow or Wraparound in Samba

CWE-189CWE-190Integer Overflow or Wraparound11 documents9 sources
Severity
5.0MEDIUMNVD
EPSS
83.5%
top 0.72%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
6
SambaDebian SambaCanonical Ubuntu Linux+3 more
Timeline
PublishedAug 6
Latest updateMay 14

Description

Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

debiandebian/samba< samba 2:3.6.17-1 (bookworm)
Debiansamba/samba< 2:3.6.17-1+3
NVDsamba/samba145 versions+144
NVDopensuse/opensuse12.2, 12.3+1

Also affects: Fedora 18, 19, Ubuntu Linux 10.04, 12.04, 12.10, 13.04, Enterprise Linux 5

Patches

Patch: ftp.samba.orgPatch: ftp.samba.org

🔴Vulnerability Details

2
GHSA
GHSA-qvwq-h632-53jh: Integer overflow in the read_nttrans_ea_list function in nttrans2022-05-14
OSV
CVE-2013-4124: Integer overflow in the read_nttrans_ea_list function in nttrans2013-08-06

💥Exploits & PoCs

2
Exploit-DB
Samba 3.5.22/3.6.17/4.0.8 - nttrans Reply Integer Overflow2013-08-22
Metasploit
Samba read_nttrans_ea_list Integer Overflow

📋Vendor Advisories

3
Ubuntu
Samba vulnerability2013-09-24
Red Hat
samba: DoS via integer overflow when reading an EA list2013-08-05
Debian
CVE-2013-4124: samba - Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Sa...2013

💬Community

3
Bugzilla
CVE-2013-4124 samba: DoS via integer overflow when reading an EA list [fedora-all]2013-08-05
Bugzilla
CVE-2013-4124 samba: DoS via integer overflow when reading an EA list2013-07-15
Bugzilla
CVE-2012-6092 activemq: Multiple XSS flaws in web demos2013-04-24