CVE-2014-3493 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Samba

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-172 — Encoding Error CWE-393 — Return of Wrong Status Code9 documents7 sources

Severity

2.7LOWNVD

OSV3.5

EPSS

2.4%

top 14.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba

Timeline

PublishedJun 23

Latest updateMay 14

Description

The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a character-set conversion failure that triggers an invalid pointer dereference.

CVSS vector

AV:A/AC:L/C:N/I:N/A:PExploitability: 5.1 | Impact: 2.9

Affected Packages4 packages

▶debiandebian/samba< samba 2:4.1.9+dfsg-1 (bookworm)

▶Debiansamba/samba< 2:4.1.9+dfsg-1+3

▶Ubuntusamba/samba< 2:4.1.6+dfsg-1ubuntu2.14.04.2

▶NVDsamba/samba52 versions+51

🔴Vulnerability Details

GHSA

GHSA-9g8v-m7jx-fffq: The push_ascii function in smbd in Samba 3↗2022-05-14

▶

OSV

samba vulnerabilities↗2014-06-26

▶

OSV

CVE-2014-3493: The push_ascii function in smbd in Samba 3↗2014-06-23

▶

📋Vendor Advisories

Ubuntu

Samba vulnerabilities↗2014-06-26

▶

Red Hat

samba: smbd unicode path names denial of service↗2014-06-23

▶

Debian

CVE-2014-3493: samba - The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.1...↗2014

▶

💬Community

Bugzilla

CVE-2014-0244 CVE-2014-3493 samba: various flaws [fedora-all]↗2014-06-23

▶

Bugzilla

CVE-2014-3493 samba: smbd unicode path names denial of service↗2014-06-12

▶