CVE-2004-0600

Samba 3.0.2-3.0.4 - Remote Code Execution via SWAT HTTP Basic Authentication Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0600. PoCs published by Noam Rathaus.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Samba 3.0.4 and prior's SWAT service via a malformed 'Authorization: Basic' header. It sends a crafted HTTP request to trigger the overflow, potentially leading to remote code execution.

Description

Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Noam Rathaus · perlremotelinux
https://www.exploit-db.com/exploits/364

This exploit targets a buffer overflow vulnerability in Samba 3.0.4 and prior's SWAT service via a malformed 'Authorization: Basic' header. It sends a crafted HTTP request to trigger the overflow, potentially leading to remote code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Samba SWAT 3.0.4 and prior
No auth needed
Prerequisites: Network access to the target's SWAT service (port 901)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (14)

Core 14
Core References
Vendor Advisory vendor-advisory x_refsource_trustix
http://www.trustix.org/errata/2004/0039/
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16785
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000851
Patch, Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-259.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109052891507263&w=2
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000854
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109051533021376&w=2
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11445
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2004_22_samba.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109051340810458&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109053195818351&w=2
Various Sources vendor-advisory x_refsource_mandrake
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:071
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200407-21.xml
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109052647928375&w=2

Scores

EPSS 0.2944
EPSS Percentile 97.9%

Details

Status published
Products (7)
samba/samba 3.0.2
samba/samba 3.0.2a
samba/samba 3.0.3
samba/samba 3.0.4
trustix/secure_linux 1.5
trustix/secure_linux 2.0
trustix/secure_linux 2.1
Published Jul 27, 2004
Tracked Since Feb 18, 2026