CVE-2002-1318

Samba <2.2.7 - Buffer Overflow

Title source: llm

Description

Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.

Exploits (1)

metasploit WORKING POC NORMAL

by hdm · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/samba/nttrans.rb

View Code ZIP pw:eip

References (16)

[Vendor Advisory] http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000550

[Vendor Advisory] http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/53580

[Vendor Advisory] http://us1.samba.org/samba/whatsnew/samba-2.2.7.html

[Third Party Advisory, US Government Resource] http://www.ciac.org/ciac/bulletins/n-019.shtml

[Third Party Advisory, US Government Resource] http://www.ciac.org/ciac/bulletins/n-023.shtml

[Patch, Vendor Advisory] http://www.debian.org/security/2002/dsa-200

[US Government Resource] http://www.kb.cert.org/vuls/id/958321

[Various Sources] http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-081.php

[Patch, Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2002-266.html

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/6210

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/10683

[Vendor Advisory] ftp://patches.sgi.com/support/free/security/advisories/20021204-01-I

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2002_045_samba.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1467

[Mailing List] http://marc.info/?l=bugtraq&m=103801986818076&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=103859045302448&w=2

Scores

EPSS 0.7505

EPSS Percentile 98.9%

Details

Status published

Products (27)

hp/cifs-9000_server a.01.08

hp/cifs-9000_server a.01.08.01

hp/cifs-9000_server a.01.09

samba/samba 2.2.2

samba/samba 2.2.3

samba/samba 2.2.4

samba/samba 2.2.5

samba/samba 2.2.6

sgi/irix 6.5

sgi/irix 6.5.1

... and 17 more

Published Dec 11, 2002

Tracked Since Feb 18, 2026