CVE-2006-3403

Samba 3.0.1-3.0.22 - Denial of Service via Share Connection Request Flood

Title source: llm

Description

The smdb daemon (smbd/service.c) in Samba 3.0.1 through 3.0.22 allows remote attackers to cause a denial of service (memory consumption) via a large number of share connection requests.

References (45)

Core 45

Core References

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21187

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1016459

Various Sources x_refsource_misc

http://securitydot.net/xpl/exploits/vulnerabilities/articles/1175/exploit.html

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/usn-314-1

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/4750

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2006_17_sr.html

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20983

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/2745

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/4502

Patch x_refsource_confirm

http://www.samba.org/samba/security/CAN-2006-3403.html

Vendor Advisory x_refsource_confirm

http://docs.info.apple.com/article.html?artnum=304829

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/22875

Vendor Advisory vendor-advisory x_refsource_slackware

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.416876

Vendor Advisory x_refsource_confirm

http://www.vmware.com/download/esx/esx-202-200610-patch.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21190

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21086

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451426/100/200/threaded

Vendor Advisory x_refsource_confirm

http://www.vmware.com/download/esx/esx-213-200610-patch.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21262

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/439880/100/100/threaded

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/439875/100/0/threaded

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/313836

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/23155

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18927

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/27648

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21019

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20980

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/440836/100/0/threaded

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2006-0591.html

Mailing List vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html

Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp

http://www.securityfocus.com/archive/1/448957/100/0/threaded

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA06-333A.html

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451404/100/0/threaded

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21046

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21159

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/440767/100/0/threaded

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2006/dsa-1110

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/439757/100/0/threaded

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200607-10.xml

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11355

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/451417/100/200/threaded

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDKSA-2006:120

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21143

Vendor Advisory vendor-advisory x_refsource_sgi

ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21018

Scores

EPSS 0.2976

EPSS Percentile 96.7%

Details

Status published

Products (27)

samba/samba 3.0.1

samba/samba 3.0.2

samba/samba 3.0.3

samba/samba 3.0.4

samba/samba 3.0.5

samba/samba 3.0.6

samba/samba 3.0.7

samba/samba 3.0.8

samba/samba 3.0.9

samba/samba 3.0.10

... and 17 more

Published Jul 12, 2006

Tracked Since Feb 18, 2026