CVE-2007-4044 - CVE Reference - Advisories

CVE Reference: CVE-2007-4044

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4044

Description: REJECT The MS-RPC functionality in smbd in Samba 3 on SUSE Linux before 20070720 does not include "one character in the shell escape handling." NOTE: this issue was originally characterized as a shell metacharacter issue due to an incomplete fix for CVE-2007-2447, which was interpreted by CVE to be security relevant. However, SUSE and Red Hat have disputed the problem, stating that the only impact is that scripts will not be executed if they have a "c" in their name, but even this limitation might not exist. This does not have security implications, so should not be included in CVE.

CVE Status: Candidate

References: SUSE http://www.novell.com/linux/security/advisories/2007_14_sr.html

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	WMNews Cross-Site Scripting Vulnerabilities

2.	Joomla Community Builder Component File Inclusion

3.	dotProject SQL Injection and Cross-Site Scripting

4.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

5.	Slackware update for amarok

6.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

7.	Novell eDirectory Multiple Vulnerabilities

8.	Caudium "configvar" Insecure Temporary Files

9.	Acoustica Mixcraft ".mx4" File Processing Buffer Overflow

10.	Sun Solaris Kernel Covert Channel Security Bypass