CVE-2007-2446

Publication date 14 May 2007

Last updated 24 July 2024

Ubuntu priority

Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (smb_io_notify_option_type_data), (3) LsarAddPrivilegesToAccount (lsa_io_privilege_set), (4) NetSetFileSecurity (sec_io_acl), or (5) LsarLookupSids/LsarLookupSids2 (lsa_io_trans_names).

Status

Show unmaintained releases

Package	Ubuntu Release	Status
samba	7.04 feisty	Fixed 3.0.24-2ubuntu1.2
	6.10 edgy	Fixed 3.0.22-1ubuntu4.2
	6.06 LTS dapper	Fixed 3.0.22-1ubuntu3.3

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-460-1
Samba vulnerabilities
16 May 2007

Other references

https://www.cve.org/CVERecord?id=CVE-2007-2446