10
CVE-2004-1154
- EPSS 27.77%
- Published 10.01.2005 05:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow.
Data is provided by the National Vulnerability Database (NVD)
Redhat ≫ Fedora Core Versioncore_2.0
Redhat ≫ Fedora Core Versioncore_3.0
Suse ≫ Suse Linux Version1.0 Editiondesktop
Suse ≫ Suse Linux Version8.1
Suse ≫ Suse Linux Version8.2
Suse ≫ Suse Linux Version9.0
Suse ≫ Suse Linux Version9.0 Editionenterprise_server
Suse ≫ Suse Linux Version9.0 Editionx86_64
Suse ≫ Suse Linux Version9.1
Suse ≫ Suse Linux Version9.2
Trustix ≫ Secure Linux Version2.0
Trustix ≫ Secure Linux Version2.1
Trustix ≫ Secure Linux Version2.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 27.77% | 0.96 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|