CVE-2004-0949 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2004-0949
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0949

Description: The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba servers to (1) read arbitrary kernel information or (2) raise a counter value to an arbitrary number by sending the first part of the fragmented packet multiple times.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18137 UBUNTU http://marc.theaimsgroup.com/?l=bugtraq&m=110082989725345&w=2 TRUSTIX http://www.trustix.org/errata/2004/0061/ SAID Secunia Advisory: SA13232 Secunia Advisory: SA20202 Secunia Advisory: SA20338 Secunia Advisory: SA20162 Secunia Advisory: SA20163 REDHAT http://www.redhat.com/support/errata/RHSA-2004-537.html http://www.redhat.com/support/errata/RHSA-2004-505.html http://www.redhat.com/support/errata/RHSA-2004-504.html MISC http://security.e-matters.de/advisories/142004.html MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:022 FEDORA DEBIAN http://www.debian.org/security/2006/dsa-1082 http://www.debian.org/security/2006/dsa-1069 http://www.debian.org/security/2006/dsa-1070 http://www.debian.org/security/2006/dsa-1067 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110072140811965&w=2 BID 11695

Return to the previous page.