CVE-2007-0453

Name of the Vulnerable Software and Affected Versions Samba versions 3.0.21 through 3.0.23d

Description A buffer overflow issue exists in the nss winbind.so.1 library, which is used by the winbindd daemon on Solaris. This issue affects the gethostbyname and getipnodebyname functions, allowing attackers to execute arbitrary code.

Recommendations For Samba versions 3.0.21 through 3.0.23d, consider disabling the gethostbyname and getipnodebyname functions as a temporary workaround until a patch is available. Restrict access to the winbindd daemon to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.