CVE-2008-4314 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-4314
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-4314

Description: smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper bounds check to be performed.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/USN-680-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-249087-1 ST 1021287 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.453684 SAID Secunia Advisory: SA32968 Secunia Advisory: SA32951 Secunia Advisory: SA32813 Secunia Advisory: SA32919 Secunia Advisory: SA36281 OSVDB 50230 HP http://marc.info/?l=bugtraq&m=125003356619515&w=2 FEDORA http://www.redhat.com/archives/fedora-package-announce/2008-December/msg00021.html http://www.redhat.com/archives/fedora-package-announce/2008-December/msg00141.html CONFIRM http://us1.samba.org/samba/security/CVE-2008-4314.html http://us1.samba.org/samba/ftp/patches/security/samba-3.0.32-CVE-2008-4314.patch BID 32494

Return to the previous page.