CVE-2013-4124

Samba - Numeric Error

Title source: rule

Description

Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet.

Exploits (2)

exploitdb WORKING POC

by x90c · textdoslinux

https://www.exploit-db.com/exploits/27778

View Code ZIP pw:eip

metasploit WORKING POC

by Jeremy Allison, dz_lnly · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/samba/read_nttrans_ea_list.rb

View Code ZIP pw:eip

References (24)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2013-08/0028.html

[Patch] http://ftp.samba.org/pub/samba/patches/security/samba-4.0.7-CVE-2013-4124.patch

[Vendor Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2013-August/113591.html

[Vendor Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114011.html

[Vendor Advisory] http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00012.html

[Vendor Advisory] http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00015.html

[Mailing List] http://marc.info/?l=bugtraq&m=141660010015249&w=2

[Third Party Advisory, VDB Entry] http://osvdb.org/95969

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1310.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1542.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1543.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2014-0305.html

[Vendor Advisory] http://secunia.com/advisories/54519

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2013:207

[Vendor Advisory] http://www.samba.org/samba/history/samba-3.5.22.html

[Vendor Advisory] http://www.samba.org/samba/history/samba-3.6.17.html

[Vendor Advisory] http://www.samba.org/samba/history/samba-4.0.8.html

[Vendor Advisory] http://www.samba.org/samba/security/CVE-2013-4124

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1028882

[Vendor Advisory] http://www.ubuntu.com/usn/USN-1966-1

... and 4 more

Scores

EPSS 0.8353

EPSS Percentile 99.3%

Details

CWE

CWE-189

Status published

Products (40)

canonical/ubuntu_linux 10.04

canonical/ubuntu_linux 12.04

canonical/ubuntu_linux 12.10

canonical/ubuntu_linux 13.04

fedoraproject/fedora 18

fedoraproject/fedora 19

opensuse/opensuse 12.2

opensuse/opensuse 12.3

redhat/enterprise_linux 5

samba/samba 3.0.0

... and 30 more

Published Aug 06, 2013

Tracked Since Feb 18, 2026