CVE Reference: CVE-2009-2906

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2009-2906

Description:
smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock break notification reply packet.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/53575

UBUNTU
  http://www.ubuntu.com/usn/USN-839-1

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html

SUNALERT
  http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021111.1-1

ST
  1022976

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.561439

SAID
  Secunia Advisory: SA36893
  Secunia Advisory: SA36918
  Secunia Advisory: SA36937
  Secunia Advisory: SA36953
  Secunia Advisory: SA37428

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9944
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7090

OSVDB
  58519

FEDORA

CONFIRM
  http://wiki.rpath.com/Advisories:rPSA-2009-0145
  http://support.apple.com/kb/HT4077
  http://news.samba.org/releases/3.2.15/
  http://news.samba.org/releases/3.4.2/
  http://news.samba.org/releases/3.3.8/
  http://samba.org/samba/security/CVE-2009-2906.html
  http://news.samba.org/releases/3.0.37/

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/507856/100/0/threaded

BID
  36573

APPLE
  http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html


Return to the previous page.