Search

Find a vulnerability

Search criteria

    14 vulnerabilities found for cifs-9000_server by hp

    CVE-2002-1318 (GCVE-0-2002-1318)

    Vulnerability from cvelistv5 – Published: 2004-09-01 04:00 – Updated: 2024-08-08 03:19
    VLAI
    Summary
    Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.kb.cert.org/vuls/id/958321 third-party-advisoryx_refsource_CERT-VN
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://us1.samba.org/samba/whatsnew/samba-2.2.7.html x_refsource_CONFIRM
    http://marc.info/?l=bugtraq&m=103801986818076&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.debian.org/security/2002/dsa-200 vendor-advisoryx_refsource_DEBIAN
    http://www.ciac.org/ciac/bulletins/n-023.shtml vendor-advisoryx_refsource_HP
    http://marc.info/?l=bugtraq&m=103859045302448&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.ciac.org/ciac/bulletins/n-019.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    http://www.securityfocus.com/bid/6210 vdb-entryx_refsource_BID
    http://www.redhat.com/support/errata/RHSA-2002-266.html vendor-advisoryx_refsource_REDHAT
    http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=f… vendor-advisoryx_refsource_SUNALERT
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    http://www.linux-mandrake.com/en/security/2002/MD… vendor-advisoryx_refsource_MANDRAKE
    Date Public
    2002-11-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T03:19:28.632Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "oval:org.mitre.oval:def:1467",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467"
              },
              {
                "name": "VU#958321",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/958321"
              },
              {
                "name": "CLA-2002:550",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000550"
              },
              {
                "name": "samba-password-change-bo(10683)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683"
              },
              {
                "name": "SuSE-SA:2002:045",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2002_045_samba.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html"
              },
              {
                "name": "20021121 GLSA: samba",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=103801986818076\u0026w=2"
              },
              {
                "name": "DSA-200",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2002/dsa-200"
              },
              {
                "name": "HPSBUX0212-230",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
              },
              {
                "name": "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=103859045302448\u0026w=2"
              },
              {
                "name": "N-019",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/n-019.shtml"
              },
              {
                "name": "6210",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/6210"
              },
              {
                "name": "RHSA-2002:266",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2002-266.html"
              },
              {
                "name": "53580",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580"
              },
              {
                "name": "20021204-01-I",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I"
              },
              {
                "name": "N-023",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
              },
              {
                "name": "MDKSA-2002:081",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2002-11-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2004-08-04T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "oval:org.mitre.oval:def:1467",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467"
            },
            {
              "name": "VU#958321",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/958321"
            },
            {
              "name": "CLA-2002:550",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000550"
            },
            {
              "name": "samba-password-change-bo(10683)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683"
            },
            {
              "name": "SuSE-SA:2002:045",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2002_045_samba.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html"
            },
            {
              "name": "20021121 GLSA: samba",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=103801986818076\u0026w=2"
            },
            {
              "name": "DSA-200",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2002/dsa-200"
            },
            {
              "name": "HPSBUX0212-230",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
            },
            {
              "name": "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=103859045302448\u0026w=2"
            },
            {
              "name": "N-019",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/n-019.shtml"
            },
            {
              "name": "6210",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/6210"
            },
            {
              "name": "RHSA-2002:266",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2002-266.html"
            },
            {
              "name": "53580",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580"
            },
            {
              "name": "20021204-01-I",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I"
            },
            {
              "name": "N-023",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
            },
            {
              "name": "MDKSA-2002:081",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2002-1318",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "oval:org.mitre.oval:def:1467",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467"
                },
                {
                  "name": "VU#958321",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/958321"
                },
                {
                  "name": "CLA-2002:550",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000550"
                },
                {
                  "name": "samba-password-change-bo(10683)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683"
                },
                {
                  "name": "SuSE-SA:2002:045",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2002_045_samba.html"
                },
                {
                  "name": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html",
                  "refsource": "CONFIRM",
                  "url": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html"
                },
                {
                  "name": "20021121 GLSA: samba",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=103801986818076\u0026w=2"
                },
                {
                  "name": "DSA-200",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2002/dsa-200"
                },
                {
                  "name": "HPSBUX0212-230",
                  "refsource": "HP",
                  "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
                },
                {
                  "name": "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=103859045302448\u0026w=2"
                },
                {
                  "name": "N-019",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/n-019.shtml"
                },
                {
                  "name": "6210",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/6210"
                },
                {
                  "name": "RHSA-2002:266",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2002-266.html"
                },
                {
                  "name": "53580",
                  "refsource": "SUNALERT",
                  "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580"
                },
                {
                  "name": "20021204-01-I",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I"
                },
                {
                  "name": "N-023",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
                },
                {
                  "name": "MDKSA-2002:081",
                  "refsource": "MANDRAKE",
                  "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2002-1318",
        "datePublished": "2004-09-01T04:00:00.000Z",
        "dateReserved": "2002-11-25T00:00:00.000Z",
        "dateUpdated": "2024-08-08T03:19:28.632Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2003-0201 (GCVE-0-2003-0201)

    Vulnerability from cvelistv5 – Published: 2003-04-15 04:00 – Updated: 2024-08-08 01:43
    VLAI
    Summary
    Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    http://marc.info/?l=bugtraq&m=104981682014565&w=2 mailing-listx_refsource_BUGTRAQ
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://www.securityfocus.com/bid/7294 vdb-entryx_refsource_BID
    http://www.digitaldefense.net/labs/advisories/DDI… x_refsource_MISC
    http://marc.info/?l=bugtraq&m=104972664226781&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.debian.org/security/2003/dsa-280 vendor-advisoryx_refsource_DEBIAN
    http://marc.info/?l=bugtraq&m=104994564212488&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.kb.cert.org/vuls/id/267873 third-party-advisoryx_refsource_CERT-VN
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.redhat.com/support/errata/RHSA-2003-137.html vendor-advisoryx_refsource_REDHAT
    http://marc.info/?l=bugtraq&m=104974612519064&w=2 mailing-listx_refsource_BUGTRAQ
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    Date Public
    2003-04-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:43:36.066Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "CLA-2003:624",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000624"
              },
              {
                "name": "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104981682014565\u0026w=2"
              },
              {
                "name": "20030403-01-P",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P"
              },
              {
                "name": "SuSE-SA:2003:025",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2003_025_samba.html"
              },
              {
                "name": "7294",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/7294"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt"
              },
              {
                "name": "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104972664226781\u0026w=2"
              },
              {
                "name": "DSA-280",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2003/dsa-280"
              },
              {
                "name": "20030409 GLSA:  samba (200304-02)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104994564212488\u0026w=2"
              },
              {
                "name": "VU#267873",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/267873"
              },
              {
                "name": "MDKSA-2003:044",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
              },
              {
                "name": "RHSA-2003:137",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
              },
              {
                "name": "20030407 Immunix Secured OS 7+ samba update",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
              },
              {
                "name": "oval:org.mitre.oval:def:567",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567"
              },
              {
                "name": "oval:org.mitre.oval:def:2163",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2003-04-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "CLA-2003:624",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000624"
            },
            {
              "name": "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104981682014565\u0026w=2"
            },
            {
              "name": "20030403-01-P",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P"
            },
            {
              "name": "SuSE-SA:2003:025",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2003_025_samba.html"
            },
            {
              "name": "7294",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/7294"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt"
            },
            {
              "name": "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104972664226781\u0026w=2"
            },
            {
              "name": "DSA-280",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2003/dsa-280"
            },
            {
              "name": "20030409 GLSA:  samba (200304-02)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104994564212488\u0026w=2"
            },
            {
              "name": "VU#267873",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/267873"
            },
            {
              "name": "MDKSA-2003:044",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
            },
            {
              "name": "RHSA-2003:137",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
            },
            {
              "name": "20030407 Immunix Secured OS 7+ samba update",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
            },
            {
              "name": "oval:org.mitre.oval:def:567",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567"
            },
            {
              "name": "oval:org.mitre.oval:def:2163",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2003-0201",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "CLA-2003:624",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000624"
                },
                {
                  "name": "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104981682014565\u0026w=2"
                },
                {
                  "name": "20030403-01-P",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P"
                },
                {
                  "name": "SuSE-SA:2003:025",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2003_025_samba.html"
                },
                {
                  "name": "7294",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/7294"
                },
                {
                  "name": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt",
                  "refsource": "MISC",
                  "url": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt"
                },
                {
                  "name": "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104972664226781\u0026w=2"
                },
                {
                  "name": "DSA-280",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2003/dsa-280"
                },
                {
                  "name": "20030409 GLSA:  samba (200304-02)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104994564212488\u0026w=2"
                },
                {
                  "name": "VU#267873",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/267873"
                },
                {
                  "name": "MDKSA-2003:044",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
                },
                {
                  "name": "RHSA-2003:137",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
                },
                {
                  "name": "20030407 Immunix Secured OS 7+ samba update",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
                },
                {
                  "name": "oval:org.mitre.oval:def:567",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567"
                },
                {
                  "name": "oval:org.mitre.oval:def:2163",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2003-0201",
        "datePublished": "2003-04-15T04:00:00.000Z",
        "dateReserved": "2003-04-04T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:43:36.066Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2003-0196 (GCVE-0-2003-0196)

    Vulnerability from cvelistv5 – Published: 2003-04-15 04:00 – Updated: 2024-08-08 01:43
    VLAI
    Summary
    Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.debian.org/security/2003/dsa-280 vendor-advisoryx_refsource_DEBIAN
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.redhat.com/support/errata/RHSA-2003-137.html vendor-advisoryx_refsource_REDHAT
    http://marc.info/?l=bugtraq&m=104973186901597&w=2 mailing-listx_refsource_BUGTRAQ
    http://marc.info/?l=bugtraq&m=104974612519064&w=2 mailing-listx_refsource_BUGTRAQ
    Date Public
    2003-04-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:43:36.046Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "oval:org.mitre.oval:def:564",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564"
              },
              {
                "name": "DSA-280",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2003/dsa-280"
              },
              {
                "name": "MDKSA-2003:044",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
              },
              {
                "name": "RHSA-2003:137",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
              },
              {
                "name": "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104973186901597\u0026w=2"
              },
              {
                "name": "20030407 Immunix Secured OS 7+ samba update",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2003-04-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "oval:org.mitre.oval:def:564",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564"
            },
            {
              "name": "DSA-280",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2003/dsa-280"
            },
            {
              "name": "MDKSA-2003:044",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
            },
            {
              "name": "RHSA-2003:137",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
            },
            {
              "name": "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104973186901597\u0026w=2"
            },
            {
              "name": "20030407 Immunix Secured OS 7+ samba update",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2003-0196",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "oval:org.mitre.oval:def:564",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564"
                },
                {
                  "name": "DSA-280",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2003/dsa-280"
                },
                {
                  "name": "MDKSA-2003:044",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
                },
                {
                  "name": "RHSA-2003:137",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
                },
                {
                  "name": "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104973186901597\u0026w=2"
                },
                {
                  "name": "20030407 Immunix Secured OS 7+ samba update",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2003-0196",
        "datePublished": "2003-04-15T04:00:00.000Z",
        "dateReserved": "2003-04-01T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:43:36.046Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2003-0085 (GCVE-0-2003-0085)

    Vulnerability from cvelistv5 – Published: 2003-03-18 05:00 – Updated: 2024-08-08 01:43
    VLAI
    Summary
    Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://marc.info/?l=bugtraq&m=104792723017768&w=2 mailing-listx_refsource_BUGTRAQ
    http://marc.info/?l=bugtraq&m=104792646416629&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.gentoo.org/security/en/glsa/glsa-20030… vendor-advisoryx_refsource_GENTOO
    http://www.securityfocus.com/archive/1/316165/30/… mailing-listx_refsource_BUGTRAQ
    http://www.redhat.com/support/errata/RHSA-2003-096.html vendor-advisoryx_refsource_REDHAT
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://marc.info/?l=bugtraq&m=104801012929374&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/7106 vdb-entryx_refsource_BID
    http://www.redhat.com/support/errata/RHSA-2003-095.html vendor-advisoryx_refsource_REDHAT
    http://www.kb.cert.org/vuls/id/298233 third-party-advisoryx_refsource_CERT-VN
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.securityfocus.com/archive/1/317145/30/… vendor-advisoryx_refsource_IMMUNIX
    http://www.debian.org/security/2003/dsa-262 vendor-advisoryx_refsource_DEBIAN
    http://secunia.com/advisories/8303 third-party-advisoryx_refsource_SECUNIA
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    http://secunia.com/advisories/8299 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2003-03-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:43:36.004Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20030317 Security Bugfix for Samba - Samba 2.2.8 Released",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104792723017768\u0026w=2"
              },
              {
                "name": "20030317 GLSA:  samba (200303-11)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104792646416629\u0026w=2"
              },
              {
                "name": "GLSA-200303-11",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml"
              },
              {
                "name": "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
              },
              {
                "name": "APPLE-SA-2003-03-24",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
              },
              {
                "name": "RHSA-2003:096",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-096.html"
              },
              {
                "name": "oval:org.mitre.oval:def:552",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552"
              },
              {
                "name": "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104801012929374\u0026w=2"
              },
              {
                "name": "7106",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/7106"
              },
              {
                "name": "RHSA-2003:095",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-095.html"
              },
              {
                "name": "VU#298233",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/298233"
              },
              {
                "name": "SuSE-SA:2003:016",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2003_016_samba.html"
              },
              {
                "name": "MDKSA-2003:032",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032"
              },
              {
                "name": "IMNX-2003-7+-003-01",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_IMMUNIX",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
              },
              {
                "name": "DSA-262",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2003/dsa-262"
              },
              {
                "name": "20030401 Immunix Secured OS 7+ samba update",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
              },
              {
                "name": "8303",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/8303"
              },
              {
                "name": "20030302-01-I",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I"
              },
              {
                "name": "8299",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/8299"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2003-03-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20030317 Security Bugfix for Samba - Samba 2.2.8 Released",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104792723017768\u0026w=2"
            },
            {
              "name": "20030317 GLSA:  samba (200303-11)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104792646416629\u0026w=2"
            },
            {
              "name": "GLSA-200303-11",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml"
            },
            {
              "name": "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
            },
            {
              "name": "APPLE-SA-2003-03-24",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
            },
            {
              "name": "RHSA-2003:096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-096.html"
            },
            {
              "name": "oval:org.mitre.oval:def:552",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552"
            },
            {
              "name": "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104801012929374\u0026w=2"
            },
            {
              "name": "7106",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/7106"
            },
            {
              "name": "RHSA-2003:095",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-095.html"
            },
            {
              "name": "VU#298233",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/298233"
            },
            {
              "name": "SuSE-SA:2003:016",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2003_016_samba.html"
            },
            {
              "name": "MDKSA-2003:032",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032"
            },
            {
              "name": "IMNX-2003-7+-003-01",
              "tags": [
                "vendor-advisory",
                "x_refsource_IMMUNIX"
              ],
              "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
            },
            {
              "name": "DSA-262",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2003/dsa-262"
            },
            {
              "name": "20030401 Immunix Secured OS 7+ samba update",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
            },
            {
              "name": "8303",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/8303"
            },
            {
              "name": "20030302-01-I",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I"
            },
            {
              "name": "8299",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/8299"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2003-0085",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20030317 Security Bugfix for Samba - Samba 2.2.8 Released",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104792723017768\u0026w=2"
                },
                {
                  "name": "20030317 GLSA:  samba (200303-11)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104792646416629\u0026w=2"
                },
                {
                  "name": "GLSA-200303-11",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml"
                },
                {
                  "name": "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
                },
                {
                  "name": "APPLE-SA-2003-03-24",
                  "refsource": "APPLE",
                  "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
                },
                {
                  "name": "RHSA-2003:096",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-096.html"
                },
                {
                  "name": "oval:org.mitre.oval:def:552",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552"
                },
                {
                  "name": "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104801012929374\u0026w=2"
                },
                {
                  "name": "7106",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/7106"
                },
                {
                  "name": "RHSA-2003:095",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-095.html"
                },
                {
                  "name": "VU#298233",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/298233"
                },
                {
                  "name": "SuSE-SA:2003:016",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2003_016_samba.html"
                },
                {
                  "name": "MDKSA-2003:032",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032"
                },
                {
                  "name": "IMNX-2003-7+-003-01",
                  "refsource": "IMMUNIX",
                  "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
                },
                {
                  "name": "DSA-262",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2003/dsa-262"
                },
                {
                  "name": "20030401 Immunix Secured OS 7+ samba update",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
                },
                {
                  "name": "8303",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/8303"
                },
                {
                  "name": "20030302-01-I",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I"
                },
                {
                  "name": "8299",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/8299"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2003-0085",
        "datePublished": "2003-03-18T05:00:00.000Z",
        "dateReserved": "2003-02-10T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:43:36.004Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2002-0991 (GCVE-0-2002-0991)

    Vulnerability from cvelistv5 – Published: 2002-08-31 04:00 – Updated: 2024-08-08 03:12
    VLAI
    Summary
    Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2002-06-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T03:12:17.026Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "HPSBUX0207-200",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html"
              },
              {
                "name": "hp-cifs-login-bo(9431)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/security_center/static/9431.php"
              },
              {
                "name": "20020624 Sharity Cifslogin Buffer Overflow (arguments)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html"
              },
              {
                "name": "5088",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/5088"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2002-06-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2002-09-10T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "HPSBUX0207-200",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html"
            },
            {
              "name": "hp-cifs-login-bo(9431)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "http://www.iss.net/security_center/static/9431.php"
            },
            {
              "name": "20020624 Sharity Cifslogin Buffer Overflow (arguments)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html"
            },
            {
              "name": "5088",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/5088"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2002-0991",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "HPSBUX0207-200",
                  "refsource": "HP",
                  "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html"
                },
                {
                  "name": "hp-cifs-login-bo(9431)",
                  "refsource": "XF",
                  "url": "http://www.iss.net/security_center/static/9431.php"
                },
                {
                  "name": "20020624 Sharity Cifslogin Buffer Overflow (arguments)",
                  "refsource": "BUGTRAQ",
                  "url": "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html"
                },
                {
                  "name": "5088",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/5088"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2002-0991",
        "datePublished": "2002-08-31T04:00:00.000Z",
        "dateReserved": "2002-08-27T00:00:00.000Z",
        "dateUpdated": "2024-08-08T03:12:17.026Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2001-0981 (GCVE-0-2001-0981)

    Vulnerability from cvelistv5 – Published: 2002-06-25 04:00 – Updated: 2024-08-08 04:37
    VLAI
    Summary
    HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2001-08-28 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T04:37:07.113Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "hp-cifs-change-passwords(7051)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051"
              },
              {
                "name": "HPSBUX0108-164",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2001-08-28T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2002-06-16T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "hp-cifs-change-passwords(7051)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051"
            },
            {
              "name": "HPSBUX0108-164",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2001-0981",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "hp-cifs-change-passwords(7051)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051"
                },
                {
                  "name": "HPSBUX0108-164",
                  "refsource": "HP",
                  "url": "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2001-0981",
        "datePublished": "2002-06-25T04:00:00.000Z",
        "dateReserved": "2002-01-31T00:00:00.000Z",
        "dateUpdated": "2024-08-08T04:37:07.113Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2001-1162 (GCVE-0-2001-1162)

    Vulnerability from cvelistv5 – Published: 2002-06-25 04:00 – Updated: 2024-08-08 04:44
    VLAI
    Summary
    Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.linux-mandrake.com/en/security/2001/MD… vendor-advisoryx_refsource_MANDRAKE
    http://www.securityfocus.com/advisories/3423 vendor-advisoryx_refsource_HP
    http://www.debian.org/security/2001/dsa-065 vendor-advisoryx_refsource_DEBIAN
    http://www.securityfocus.com/bid/2928 vdb-entryx_refsource_BID
    http://us1.samba.org/samba/whatsnew/macroexploit.html x_refsource_CONFIRM
    http://www.calderasystems.com/support/security/ad… vendor-advisoryx_refsource_CALDERA
    http://download.immunix.org/ImmunixOS/7.0/updates… vendor-advisoryx_refsource_IMMUNIX
    http://www.redhat.com/support/errata/RHSA-2001-086.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/193027 mailing-listx_refsource_BUGTRAQ
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    http://ciac.llnl.gov/ciac/bulletins/l-105.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    Date Public
    2001-06-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T04:44:08.280Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "MDKSA-2001-062",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3"
              },
              {
                "name": "HPSBUX0107-157",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/advisories/3423"
              },
              {
                "name": "DSA-065",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2001/dsa-065"
              },
              {
                "name": "2928",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/2928"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://us1.samba.org/samba/whatsnew/macroexploit.html"
              },
              {
                "name": "CSSA-2001-024.0",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CALDERA",
                  "x_transferred"
                ],
                "url": "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt"
              },
              {
                "name": "IMNX-2001-70-027-01",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_IMMUNIX",
                  "x_transferred"
                ],
                "url": "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01"
              },
              {
                "name": "RHSA-2001:086",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2001-086.html"
              },
              {
                "name": "samba-netbios-file-creation(6731)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731"
              },
              {
                "name": "20010623 smbd remote file creation vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/193027"
              },
              {
                "name": "CLA-2001:405",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000405"
              },
              {
                "name": "L-105",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml"
              },
              {
                "name": "20011002-01-P",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2001-06-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2002-03-22T10:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "MDKSA-2001-062",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3"
            },
            {
              "name": "HPSBUX0107-157",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.securityfocus.com/advisories/3423"
            },
            {
              "name": "DSA-065",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2001/dsa-065"
            },
            {
              "name": "2928",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/2928"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://us1.samba.org/samba/whatsnew/macroexploit.html"
            },
            {
              "name": "CSSA-2001-024.0",
              "tags": [
                "vendor-advisory",
                "x_refsource_CALDERA"
              ],
              "url": "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt"
            },
            {
              "name": "IMNX-2001-70-027-01",
              "tags": [
                "vendor-advisory",
                "x_refsource_IMMUNIX"
              ],
              "url": "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01"
            },
            {
              "name": "RHSA-2001:086",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2001-086.html"
            },
            {
              "name": "samba-netbios-file-creation(6731)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731"
            },
            {
              "name": "20010623 smbd remote file creation vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/193027"
            },
            {
              "name": "CLA-2001:405",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000405"
            },
            {
              "name": "L-105",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml"
            },
            {
              "name": "20011002-01-P",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2001-1162",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "MDKSA-2001-062",
                  "refsource": "MANDRAKE",
                  "url": "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3"
                },
                {
                  "name": "HPSBUX0107-157",
                  "refsource": "HP",
                  "url": "http://www.securityfocus.com/advisories/3423"
                },
                {
                  "name": "DSA-065",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2001/dsa-065"
                },
                {
                  "name": "2928",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/2928"
                },
                {
                  "name": "http://us1.samba.org/samba/whatsnew/macroexploit.html",
                  "refsource": "CONFIRM",
                  "url": "http://us1.samba.org/samba/whatsnew/macroexploit.html"
                },
                {
                  "name": "CSSA-2001-024.0",
                  "refsource": "CALDERA",
                  "url": "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt"
                },
                {
                  "name": "IMNX-2001-70-027-01",
                  "refsource": "IMMUNIX",
                  "url": "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01"
                },
                {
                  "name": "RHSA-2001:086",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2001-086.html"
                },
                {
                  "name": "samba-netbios-file-creation(6731)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731"
                },
                {
                  "name": "20010623 smbd remote file creation vulnerability",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/193027"
                },
                {
                  "name": "CLA-2001:405",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000405"
                },
                {
                  "name": "L-105",
                  "refsource": "CIAC",
                  "url": "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml"
                },
                {
                  "name": "20011002-01-P",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2001-1162",
        "datePublished": "2002-06-25T04:00:00.000Z",
        "dateReserved": "2002-03-15T00:00:00.000Z",
        "dateUpdated": "2024-08-08T04:44:08.280Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2003-0201 (GCVE-0-2003-0201)

    Vulnerability from nvd – Published: 2003-04-15 04:00 – Updated: 2024-08-08 01:43
    VLAI
    Summary
    Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    http://marc.info/?l=bugtraq&m=104981682014565&w=2 mailing-listx_refsource_BUGTRAQ
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://www.securityfocus.com/bid/7294 vdb-entryx_refsource_BID
    http://www.digitaldefense.net/labs/advisories/DDI… x_refsource_MISC
    http://marc.info/?l=bugtraq&m=104972664226781&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.debian.org/security/2003/dsa-280 vendor-advisoryx_refsource_DEBIAN
    http://marc.info/?l=bugtraq&m=104994564212488&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.kb.cert.org/vuls/id/267873 third-party-advisoryx_refsource_CERT-VN
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.redhat.com/support/errata/RHSA-2003-137.html vendor-advisoryx_refsource_REDHAT
    http://marc.info/?l=bugtraq&m=104974612519064&w=2 mailing-listx_refsource_BUGTRAQ
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    Date Public
    2003-04-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:43:36.066Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "CLA-2003:624",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000624"
              },
              {
                "name": "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104981682014565\u0026w=2"
              },
              {
                "name": "20030403-01-P",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P"
              },
              {
                "name": "SuSE-SA:2003:025",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2003_025_samba.html"
              },
              {
                "name": "7294",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/7294"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt"
              },
              {
                "name": "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104972664226781\u0026w=2"
              },
              {
                "name": "DSA-280",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2003/dsa-280"
              },
              {
                "name": "20030409 GLSA:  samba (200304-02)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104994564212488\u0026w=2"
              },
              {
                "name": "VU#267873",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/267873"
              },
              {
                "name": "MDKSA-2003:044",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
              },
              {
                "name": "RHSA-2003:137",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
              },
              {
                "name": "20030407 Immunix Secured OS 7+ samba update",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
              },
              {
                "name": "oval:org.mitre.oval:def:567",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567"
              },
              {
                "name": "oval:org.mitre.oval:def:2163",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2003-04-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "CLA-2003:624",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000624"
            },
            {
              "name": "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104981682014565\u0026w=2"
            },
            {
              "name": "20030403-01-P",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P"
            },
            {
              "name": "SuSE-SA:2003:025",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2003_025_samba.html"
            },
            {
              "name": "7294",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/7294"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt"
            },
            {
              "name": "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104972664226781\u0026w=2"
            },
            {
              "name": "DSA-280",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2003/dsa-280"
            },
            {
              "name": "20030409 GLSA:  samba (200304-02)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104994564212488\u0026w=2"
            },
            {
              "name": "VU#267873",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/267873"
            },
            {
              "name": "MDKSA-2003:044",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
            },
            {
              "name": "RHSA-2003:137",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
            },
            {
              "name": "20030407 Immunix Secured OS 7+ samba update",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
            },
            {
              "name": "oval:org.mitre.oval:def:567",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567"
            },
            {
              "name": "oval:org.mitre.oval:def:2163",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2003-0201",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "CLA-2003:624",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000624"
                },
                {
                  "name": "20030408 [Sorcerer-spells] SAMBA--SORCERER2003-04-08",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104981682014565\u0026w=2"
                },
                {
                  "name": "20030403-01-P",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20030403-01-P"
                },
                {
                  "name": "SuSE-SA:2003:025",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2003_025_samba.html"
                },
                {
                  "name": "7294",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/7294"
                },
                {
                  "name": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt",
                  "refsource": "MISC",
                  "url": "http://www.digitaldefense.net/labs/advisories/DDI-1013.txt"
                },
                {
                  "name": "20030407 [DDI-1013] Buffer Overflow in Samba allows remote root compromise",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104972664226781\u0026w=2"
                },
                {
                  "name": "DSA-280",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2003/dsa-280"
                },
                {
                  "name": "20030409 GLSA:  samba (200304-02)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104994564212488\u0026w=2"
                },
                {
                  "name": "VU#267873",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/267873"
                },
                {
                  "name": "MDKSA-2003:044",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
                },
                {
                  "name": "RHSA-2003:137",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
                },
                {
                  "name": "20030407 Immunix Secured OS 7+ samba update",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
                },
                {
                  "name": "oval:org.mitre.oval:def:567",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567"
                },
                {
                  "name": "oval:org.mitre.oval:def:2163",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2003-0201",
        "datePublished": "2003-04-15T04:00:00.000Z",
        "dateReserved": "2003-04-04T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:43:36.066Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2003-0196 (GCVE-0-2003-0196)

    Vulnerability from nvd – Published: 2003-04-15 04:00 – Updated: 2024-08-08 01:43
    VLAI
    Summary
    Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.debian.org/security/2003/dsa-280 vendor-advisoryx_refsource_DEBIAN
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.redhat.com/support/errata/RHSA-2003-137.html vendor-advisoryx_refsource_REDHAT
    http://marc.info/?l=bugtraq&m=104973186901597&w=2 mailing-listx_refsource_BUGTRAQ
    http://marc.info/?l=bugtraq&m=104974612519064&w=2 mailing-listx_refsource_BUGTRAQ
    Date Public
    2003-04-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:43:36.046Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "oval:org.mitre.oval:def:564",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564"
              },
              {
                "name": "DSA-280",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2003/dsa-280"
              },
              {
                "name": "MDKSA-2003:044",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
              },
              {
                "name": "RHSA-2003:137",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
              },
              {
                "name": "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104973186901597\u0026w=2"
              },
              {
                "name": "20030407 Immunix Secured OS 7+ samba update",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2003-04-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "oval:org.mitre.oval:def:564",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564"
            },
            {
              "name": "DSA-280",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2003/dsa-280"
            },
            {
              "name": "MDKSA-2003:044",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
            },
            {
              "name": "RHSA-2003:137",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
            },
            {
              "name": "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104973186901597\u0026w=2"
            },
            {
              "name": "20030407 Immunix Secured OS 7+ samba update",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2003-0196",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "oval:org.mitre.oval:def:564",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A564"
                },
                {
                  "name": "DSA-280",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2003/dsa-280"
                },
                {
                  "name": "MDKSA-2003:044",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:044"
                },
                {
                  "name": "RHSA-2003:137",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-137.html"
                },
                {
                  "name": "20030407 [OpenPKG-SA-2003.028] OpenPKG Security Advisory (samba)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104973186901597\u0026w=2"
                },
                {
                  "name": "20030407 Immunix Secured OS 7+ samba update",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104974612519064\u0026w=2"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2003-0196",
        "datePublished": "2003-04-15T04:00:00.000Z",
        "dateReserved": "2003-04-01T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:43:36.046Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2003-0085 (GCVE-0-2003-0085)

    Vulnerability from nvd – Published: 2003-03-18 05:00 – Updated: 2024-08-08 01:43
    VLAI
    Summary
    Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://marc.info/?l=bugtraq&m=104792723017768&w=2 mailing-listx_refsource_BUGTRAQ
    http://marc.info/?l=bugtraq&m=104792646416629&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.gentoo.org/security/en/glsa/glsa-20030… vendor-advisoryx_refsource_GENTOO
    http://www.securityfocus.com/archive/1/316165/30/… mailing-listx_refsource_BUGTRAQ
    http://www.redhat.com/support/errata/RHSA-2003-096.html vendor-advisoryx_refsource_REDHAT
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://marc.info/?l=bugtraq&m=104801012929374&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/7106 vdb-entryx_refsource_BID
    http://www.redhat.com/support/errata/RHSA-2003-095.html vendor-advisoryx_refsource_REDHAT
    http://www.kb.cert.org/vuls/id/298233 third-party-advisoryx_refsource_CERT-VN
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.securityfocus.com/archive/1/317145/30/… vendor-advisoryx_refsource_IMMUNIX
    http://www.debian.org/security/2003/dsa-262 vendor-advisoryx_refsource_DEBIAN
    http://secunia.com/advisories/8303 third-party-advisoryx_refsource_SECUNIA
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    http://secunia.com/advisories/8299 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2003-03-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:43:36.004Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20030317 Security Bugfix for Samba - Samba 2.2.8 Released",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104792723017768\u0026w=2"
              },
              {
                "name": "20030317 GLSA:  samba (200303-11)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104792646416629\u0026w=2"
              },
              {
                "name": "GLSA-200303-11",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml"
              },
              {
                "name": "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
              },
              {
                "name": "APPLE-SA-2003-03-24",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
              },
              {
                "name": "RHSA-2003:096",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-096.html"
              },
              {
                "name": "oval:org.mitre.oval:def:552",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552"
              },
              {
                "name": "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=104801012929374\u0026w=2"
              },
              {
                "name": "7106",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/7106"
              },
              {
                "name": "RHSA-2003:095",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2003-095.html"
              },
              {
                "name": "VU#298233",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/298233"
              },
              {
                "name": "SuSE-SA:2003:016",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2003_016_samba.html"
              },
              {
                "name": "MDKSA-2003:032",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032"
              },
              {
                "name": "IMNX-2003-7+-003-01",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_IMMUNIX",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
              },
              {
                "name": "DSA-262",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2003/dsa-262"
              },
              {
                "name": "20030401 Immunix Secured OS 7+ samba update",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
              },
              {
                "name": "8303",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/8303"
              },
              {
                "name": "20030302-01-I",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I"
              },
              {
                "name": "8299",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/8299"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2003-03-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20030317 Security Bugfix for Samba - Samba 2.2.8 Released",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104792723017768\u0026w=2"
            },
            {
              "name": "20030317 GLSA:  samba (200303-11)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104792646416629\u0026w=2"
            },
            {
              "name": "GLSA-200303-11",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml"
            },
            {
              "name": "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
            },
            {
              "name": "APPLE-SA-2003-03-24",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
            },
            {
              "name": "RHSA-2003:096",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-096.html"
            },
            {
              "name": "oval:org.mitre.oval:def:552",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552"
            },
            {
              "name": "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=104801012929374\u0026w=2"
            },
            {
              "name": "7106",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/7106"
            },
            {
              "name": "RHSA-2003:095",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-095.html"
            },
            {
              "name": "VU#298233",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/298233"
            },
            {
              "name": "SuSE-SA:2003:016",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2003_016_samba.html"
            },
            {
              "name": "MDKSA-2003:032",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032"
            },
            {
              "name": "IMNX-2003-7+-003-01",
              "tags": [
                "vendor-advisory",
                "x_refsource_IMMUNIX"
              ],
              "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
            },
            {
              "name": "DSA-262",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2003/dsa-262"
            },
            {
              "name": "20030401 Immunix Secured OS 7+ samba update",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
            },
            {
              "name": "8303",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/8303"
            },
            {
              "name": "20030302-01-I",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I"
            },
            {
              "name": "8299",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/8299"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2003-0085",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20030317 Security Bugfix for Samba - Samba 2.2.8 Released",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104792723017768\u0026w=2"
                },
                {
                  "name": "20030317 GLSA:  samba (200303-11)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104792646416629\u0026w=2"
                },
                {
                  "name": "GLSA-200303-11",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml"
                },
                {
                  "name": "20030325 Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
                },
                {
                  "name": "APPLE-SA-2003-03-24",
                  "refsource": "APPLE",
                  "url": "http://www.securityfocus.com/archive/1/316165/30/25370/threaded"
                },
                {
                  "name": "RHSA-2003:096",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-096.html"
                },
                {
                  "name": "oval:org.mitre.oval:def:552",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552"
                },
                {
                  "name": "20030318 [OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=104801012929374\u0026w=2"
                },
                {
                  "name": "7106",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/7106"
                },
                {
                  "name": "RHSA-2003:095",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2003-095.html"
                },
                {
                  "name": "VU#298233",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/298233"
                },
                {
                  "name": "SuSE-SA:2003:016",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2003_016_samba.html"
                },
                {
                  "name": "MDKSA-2003:032",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:032"
                },
                {
                  "name": "IMNX-2003-7+-003-01",
                  "refsource": "IMMUNIX",
                  "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
                },
                {
                  "name": "DSA-262",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2003/dsa-262"
                },
                {
                  "name": "20030401 Immunix Secured OS 7+ samba update",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/317145/30/25220/threaded"
                },
                {
                  "name": "8303",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/8303"
                },
                {
                  "name": "20030302-01-I",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I"
                },
                {
                  "name": "8299",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/8299"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2003-0085",
        "datePublished": "2003-03-18T05:00:00.000Z",
        "dateReserved": "2003-02-10T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:43:36.004Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2002-1318 (GCVE-0-2002-1318)

    Vulnerability from nvd – Published: 2004-09-01 04:00 – Updated: 2024-08-08 03:19
    VLAI
    Summary
    Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.kb.cert.org/vuls/id/958321 third-party-advisoryx_refsource_CERT-VN
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://us1.samba.org/samba/whatsnew/samba-2.2.7.html x_refsource_CONFIRM
    http://marc.info/?l=bugtraq&m=103801986818076&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.debian.org/security/2002/dsa-200 vendor-advisoryx_refsource_DEBIAN
    http://www.ciac.org/ciac/bulletins/n-023.shtml vendor-advisoryx_refsource_HP
    http://marc.info/?l=bugtraq&m=103859045302448&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.ciac.org/ciac/bulletins/n-019.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    http://www.securityfocus.com/bid/6210 vdb-entryx_refsource_BID
    http://www.redhat.com/support/errata/RHSA-2002-266.html vendor-advisoryx_refsource_REDHAT
    http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=f… vendor-advisoryx_refsource_SUNALERT
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    http://www.linux-mandrake.com/en/security/2002/MD… vendor-advisoryx_refsource_MANDRAKE
    Date Public
    2002-11-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T03:19:28.632Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "oval:org.mitre.oval:def:1467",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467"
              },
              {
                "name": "VU#958321",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/958321"
              },
              {
                "name": "CLA-2002:550",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000550"
              },
              {
                "name": "samba-password-change-bo(10683)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683"
              },
              {
                "name": "SuSE-SA:2002:045",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2002_045_samba.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html"
              },
              {
                "name": "20021121 GLSA: samba",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=103801986818076\u0026w=2"
              },
              {
                "name": "DSA-200",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2002/dsa-200"
              },
              {
                "name": "HPSBUX0212-230",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
              },
              {
                "name": "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=103859045302448\u0026w=2"
              },
              {
                "name": "N-019",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/n-019.shtml"
              },
              {
                "name": "6210",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/6210"
              },
              {
                "name": "RHSA-2002:266",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2002-266.html"
              },
              {
                "name": "53580",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580"
              },
              {
                "name": "20021204-01-I",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I"
              },
              {
                "name": "N-023",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
              },
              {
                "name": "MDKSA-2002:081",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2002-11-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2004-08-04T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "oval:org.mitre.oval:def:1467",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467"
            },
            {
              "name": "VU#958321",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/958321"
            },
            {
              "name": "CLA-2002:550",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000550"
            },
            {
              "name": "samba-password-change-bo(10683)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683"
            },
            {
              "name": "SuSE-SA:2002:045",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2002_045_samba.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html"
            },
            {
              "name": "20021121 GLSA: samba",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=103801986818076\u0026w=2"
            },
            {
              "name": "DSA-200",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2002/dsa-200"
            },
            {
              "name": "HPSBUX0212-230",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
            },
            {
              "name": "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=103859045302448\u0026w=2"
            },
            {
              "name": "N-019",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/n-019.shtml"
            },
            {
              "name": "6210",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/6210"
            },
            {
              "name": "RHSA-2002:266",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2002-266.html"
            },
            {
              "name": "53580",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580"
            },
            {
              "name": "20021204-01-I",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I"
            },
            {
              "name": "N-023",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
            },
            {
              "name": "MDKSA-2002:081",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2002-1318",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "oval:org.mitre.oval:def:1467",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467"
                },
                {
                  "name": "VU#958321",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/958321"
                },
                {
                  "name": "CLA-2002:550",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000550"
                },
                {
                  "name": "samba-password-change-bo(10683)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10683"
                },
                {
                  "name": "SuSE-SA:2002:045",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2002_045_samba.html"
                },
                {
                  "name": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html",
                  "refsource": "CONFIRM",
                  "url": "http://us1.samba.org/samba/whatsnew/samba-2.2.7.html"
                },
                {
                  "name": "20021121 GLSA: samba",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=103801986818076\u0026w=2"
                },
                {
                  "name": "DSA-200",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2002/dsa-200"
                },
                {
                  "name": "HPSBUX0212-230",
                  "refsource": "HP",
                  "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
                },
                {
                  "name": "20021129 [OpenPKG-SA-2002.012] OpenPKG Security Advisory (samba)",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=103859045302448\u0026w=2"
                },
                {
                  "name": "N-019",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/n-019.shtml"
                },
                {
                  "name": "6210",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/6210"
                },
                {
                  "name": "RHSA-2002:266",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2002-266.html"
                },
                {
                  "name": "53580",
                  "refsource": "SUNALERT",
                  "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580"
                },
                {
                  "name": "20021204-01-I",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I"
                },
                {
                  "name": "N-023",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/n-023.shtml"
                },
                {
                  "name": "MDKSA-2002:081",
                  "refsource": "MANDRAKE",
                  "url": "http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2002-1318",
        "datePublished": "2004-09-01T04:00:00.000Z",
        "dateReserved": "2002-11-25T00:00:00.000Z",
        "dateUpdated": "2024-08-08T03:19:28.632Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2002-0991 (GCVE-0-2002-0991)

    Vulnerability from nvd – Published: 2002-08-31 04:00 – Updated: 2024-08-08 03:12
    VLAI
    Summary
    Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2002-06-24 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T03:12:17.026Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "HPSBUX0207-200",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html"
              },
              {
                "name": "hp-cifs-login-bo(9431)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/security_center/static/9431.php"
              },
              {
                "name": "20020624 Sharity Cifslogin Buffer Overflow (arguments)",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html"
              },
              {
                "name": "5088",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/5088"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2002-06-24T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2002-09-10T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "HPSBUX0207-200",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html"
            },
            {
              "name": "hp-cifs-login-bo(9431)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "http://www.iss.net/security_center/static/9431.php"
            },
            {
              "name": "20020624 Sharity Cifslogin Buffer Overflow (arguments)",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html"
            },
            {
              "name": "5088",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/5088"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2002-0991",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "HPSBUX0207-200",
                  "refsource": "HP",
                  "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0016.html"
                },
                {
                  "name": "hp-cifs-login-bo(9431)",
                  "refsource": "XF",
                  "url": "http://www.iss.net/security_center/static/9431.php"
                },
                {
                  "name": "20020624 Sharity Cifslogin Buffer Overflow (arguments)",
                  "refsource": "BUGTRAQ",
                  "url": "http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html"
                },
                {
                  "name": "5088",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/5088"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2002-0991",
        "datePublished": "2002-08-31T04:00:00.000Z",
        "dateReserved": "2002-08-27T00:00:00.000Z",
        "dateUpdated": "2024-08-08T03:12:17.026Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2001-0981 (GCVE-0-2001-0981)

    Vulnerability from nvd – Published: 2002-06-25 04:00 – Updated: 2024-08-08 04:37
    VLAI
    Summary
    HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2001-08-28 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T04:37:07.113Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "hp-cifs-change-passwords(7051)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051"
              },
              {
                "name": "HPSBUX0108-164",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2001-08-28T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2002-06-16T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "hp-cifs-change-passwords(7051)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051"
            },
            {
              "name": "HPSBUX0108-164",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2001-0981",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the \"unix password sync\" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "hp-cifs-change-passwords(7051)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7051"
                },
                {
                  "name": "HPSBUX0108-164",
                  "refsource": "HP",
                  "url": "http://archives.neohapsis.com/archives/hp/2001-q3/0048.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2001-0981",
        "datePublished": "2002-06-25T04:00:00.000Z",
        "dateReserved": "2002-01-31T00:00:00.000Z",
        "dateUpdated": "2024-08-08T04:37:07.113Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2001-1162 (GCVE-0-2001-1162)

    Vulnerability from nvd – Published: 2002-06-25 04:00 – Updated: 2024-08-08 04:44
    VLAI
    Summary
    Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.linux-mandrake.com/en/security/2001/MD… vendor-advisoryx_refsource_MANDRAKE
    http://www.securityfocus.com/advisories/3423 vendor-advisoryx_refsource_HP
    http://www.debian.org/security/2001/dsa-065 vendor-advisoryx_refsource_DEBIAN
    http://www.securityfocus.com/bid/2928 vdb-entryx_refsource_BID
    http://us1.samba.org/samba/whatsnew/macroexploit.html x_refsource_CONFIRM
    http://www.calderasystems.com/support/security/ad… vendor-advisoryx_refsource_CALDERA
    http://download.immunix.org/ImmunixOS/7.0/updates… vendor-advisoryx_refsource_IMMUNIX
    http://www.redhat.com/support/errata/RHSA-2001-086.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/193027 mailing-listx_refsource_BUGTRAQ
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    http://ciac.llnl.gov/ciac/bulletins/l-105.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    Date Public
    2001-06-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T04:44:08.280Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "MDKSA-2001-062",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3"
              },
              {
                "name": "HPSBUX0107-157",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/advisories/3423"
              },
              {
                "name": "DSA-065",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2001/dsa-065"
              },
              {
                "name": "2928",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/2928"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://us1.samba.org/samba/whatsnew/macroexploit.html"
              },
              {
                "name": "CSSA-2001-024.0",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CALDERA",
                  "x_transferred"
                ],
                "url": "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt"
              },
              {
                "name": "IMNX-2001-70-027-01",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_IMMUNIX",
                  "x_transferred"
                ],
                "url": "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01"
              },
              {
                "name": "RHSA-2001:086",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2001-086.html"
              },
              {
                "name": "samba-netbios-file-creation(6731)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731"
              },
              {
                "name": "20010623 smbd remote file creation vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/193027"
              },
              {
                "name": "CLA-2001:405",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000405"
              },
              {
                "name": "L-105",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml"
              },
              {
                "name": "20011002-01-P",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2001-06-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2002-03-22T10:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "MDKSA-2001-062",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3"
            },
            {
              "name": "HPSBUX0107-157",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.securityfocus.com/advisories/3423"
            },
            {
              "name": "DSA-065",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2001/dsa-065"
            },
            {
              "name": "2928",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/2928"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://us1.samba.org/samba/whatsnew/macroexploit.html"
            },
            {
              "name": "CSSA-2001-024.0",
              "tags": [
                "vendor-advisory",
                "x_refsource_CALDERA"
              ],
              "url": "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt"
            },
            {
              "name": "IMNX-2001-70-027-01",
              "tags": [
                "vendor-advisory",
                "x_refsource_IMMUNIX"
              ],
              "url": "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01"
            },
            {
              "name": "RHSA-2001:086",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2001-086.html"
            },
            {
              "name": "samba-netbios-file-creation(6731)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731"
            },
            {
              "name": "20010623 smbd remote file creation vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/193027"
            },
            {
              "name": "CLA-2001:405",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000405"
            },
            {
              "name": "L-105",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml"
            },
            {
              "name": "20011002-01-P",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2001-1162",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "MDKSA-2001-062",
                  "refsource": "MANDRAKE",
                  "url": "http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-062.php3"
                },
                {
                  "name": "HPSBUX0107-157",
                  "refsource": "HP",
                  "url": "http://www.securityfocus.com/advisories/3423"
                },
                {
                  "name": "DSA-065",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2001/dsa-065"
                },
                {
                  "name": "2928",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/2928"
                },
                {
                  "name": "http://us1.samba.org/samba/whatsnew/macroexploit.html",
                  "refsource": "CONFIRM",
                  "url": "http://us1.samba.org/samba/whatsnew/macroexploit.html"
                },
                {
                  "name": "CSSA-2001-024.0",
                  "refsource": "CALDERA",
                  "url": "http://www.calderasystems.com/support/security/advisories/CSSA-2001-024.0.txt"
                },
                {
                  "name": "IMNX-2001-70-027-01",
                  "refsource": "IMMUNIX",
                  "url": "http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-027-01"
                },
                {
                  "name": "RHSA-2001:086",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2001-086.html"
                },
                {
                  "name": "samba-netbios-file-creation(6731)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6731"
                },
                {
                  "name": "20010623 smbd remote file creation vulnerability",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/193027"
                },
                {
                  "name": "CLA-2001:405",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000405"
                },
                {
                  "name": "L-105",
                  "refsource": "CIAC",
                  "url": "http://ciac.llnl.gov/ciac/bulletins/l-105.shtml"
                },
                {
                  "name": "20011002-01-P",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20011002-01-P"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2001-1162",
        "datePublished": "2002-06-25T04:00:00.000Z",
        "dateReserved": "2002-03-15T00:00:00.000Z",
        "dateUpdated": "2024-08-08T04:44:08.280Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }