PT-2011-1136 · Samba+3 · Samba+3

Volker Lendecke

Published

2011-03-01

Updated

2024-06-15

CVE-2011-0719

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Samba versions prior to 3.3.15 Samba versions prior to 3.4.12 Samba versions prior to 3.5.7

Description The issue allows remote attackers to cause a denial of service, potentially leading to disruption of protected information. This can be achieved by opening a large number of files, which may result in stack memory corruption, an infinite loop, or daemon crash. The exploitation can be related to Winbind or smbd.

Recommendations For Samba versions prior to 3.3.15, update to version 3.3.15 or later. For Samba versions prior to 3.4.12, update to version 3.4.12 or later. For Samba versions prior to 3.5.7, update to version 3.5.7 or later.

Exploit

Fix

DoS

Infinite Loop

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835CWE-119

Related Identifiers

BDU:2015-07088

BDU:2015-07089

BDU:2015-07090

BDU:2015-07091

BDU:2015-07092

BDU:2015-07093

BDU:2015-07094

BDU:2015-07095

BDU:2015-08697

BDU:2015-08698

BDU:2015-08699

BDU:2015-08700

BDU:2015-08701

BDU:2015-08702

BDU:2015-08703

BDU:2015-08704

BDU:2015-09648

CVE-2011-0719

DSA-2175-1

ECHO-7FB9-499C-305C

HPSBUX02657

OPENSUSE-SU-2024:10069-1

RHSA-2011:0305

RHSA-2011:0306

RHSA-2011_0305

RHSA-2011_0306

Affected Products

Hp-Ux

Red Hat

Samba

Suse

PT-2011-1136 · Samba+3 · Samba+3

CVE-2011-0719

Weakness Enumeration

Related Identifiers

Affected Products

References · 117