Test ID:	1.3.6.1.4.1.25623.1.0.13657
Category:	Gain root remotely
Title:	Samba Mangling Overflow
Summary:	NOSUMMARY
Description:	Description: The remote Samba server, according to its version number, may be vulnerable to a buffer overflow if the option 'mangling method' is set to 'hash' in smb.conf (which is not the case by default). An attacker may exploit this flaw to execute arbitrary commands on the remote host. Solution : upgrade to Samba 2.2.10 or 3.0.5 See also : http://us1.samba.org/samba/whatsnew/samba-2.2.10.html See also : http://us1.samba.org/samba/whatsnew/samba-3.0.5.html Risk factor : High
Cross-Ref:	BugTraq ID: 10781 Common Vulnerability Exposure (CVE) ID: CVE-2004-0686 Bugtraq: 20040722 Security Release - Samba 3.0.5 and 2.2.10 (Google Search) http://marc.info/?l=bugtraq&m=109051340810458&w=2 Bugtraq: 20040722 TSSA-2004-014 - samba (Google Search) http://marc.info/?l=bugtraq&m=109052891507263&w=2 Bugtraq: 20040722 [OpenPKG-SA-2004.033] OpenPKG Security Advisory (samba) (Google Search) http://marc.info/?l=bugtraq&m=109051533021376&w=2 Conectiva Linux advisory: CLA-2004:851 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000851 Conectiva Linux advisory: CLA-2004:854 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000854 http://marc.info/?l=bugtraq&m=109785827607823&w=2 http://www.gentoo.org/security/en/glsa/glsa-200407-21.xml HPdes Security Advisory: SSRT4782 http://marc.info/?l=bugtraq&m=109094272328981&w=2 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:071 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10461 http://www.redhat.com/support/errata/RHSA-2004-259.html http://sunsolve.sun.com/search/document.do?assetkey=1-26-101584-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57664-1 SuSE Security Announcement: SUSE-SA:2004:022 (Google Search) http://www.novell.com/linux/security/advisories/2004_22_samba.html http://www.trustix.org/errata/2004/0039/ XForce ISS Database: samba-mangling-method-bo(16786) https://exchange.xforce.ibmcloud.com/vulnerabilities/16786
Copyright	This script is Copyright (C) 2004 Tenable Network Security

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.