CVE-2007-2447

Name of the Vulnerable Software and Affected Versions: Samba versions 3.0.0 through 3.0.25rc3 Samba version 3.0.23c

Description: The issue affects the Samba package, allowing remote attackers to execute arbitrary commands via shell metacharacters involving the SamrChangePassword function when the "username map script" smb.conf option is enabled. Additionally, remote authenticated users can execute commands via shell metacharacters involving other MS-RPC functions in remote printer and file share management. Exploitation of these vulnerabilities can lead to disruption of confidentiality, integrity, and availability of protected information and can be carried out remotely.

Recommendations: For Samba versions 3.0.0 through 3.0.25rc3, update to a version newer than 3.0.25rc3 to resolve the issue. For Samba version 3.0.23c, consider disabling the SamrChangePassword function and restricting access to remote printer and file share management until a patch is available. As a temporary workaround, consider disabling the "username map script" smb.conf option to minimize the risk of exploitation.