CVE-2004-0807
Samba <= 3.0.6 - Denial of Service via Malformed Request Process Spawning
Title source: llmDescription
Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11141
Patch, Vendor Advisory vendor-advisory
x_refsource_trustix
http://www.trustix.net/errata/2004/0046/
Patch, Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-467.html
Patch, Vendor Advisory third-party-advisory
x_refsource_idefense
http://www.idefense.com/application/poi/display?id=139&type=vulnerabilities
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109509335230495&w=2
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109526231623307&w=2
Patch, Vendor Advisory vendor-advisory
x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000873
Various Sources vendor-advisory
x_refsource_mandrake
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:092
Vendor Advisory vendor-advisory
x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20041201-01-P
Patch, Vendor Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200409-16.xml
Scores
EPSS
0.0985
EPSS Percentile
93.1%
Details
Status
published
Products (23)
conectiva/linux
9.0
conectiva/linux
10.0
mandrakesoft/mandrake_linux
10.0 (2 CPE variants)
samba/samba
3.0.0
samba/samba
3.0.1
samba/samba
3.0.2
samba/samba
3.0.2a
samba/samba
3.0.3
samba/samba
3.0.4 (2 CPE variants)
samba/samba
3.0.5
... and 13 more
Published
Sep 13, 2004
Tracked Since
Feb 18, 2026