Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2007-0453 - CERT CVE
CVE-2007-0453
ID
CVE-2007-0453
Sažetak
Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 through 3.0.23d, as used in the winbindd daemon on Solaris, allows attackers to execute arbitrary code via the (1) gethostbyname and (2) getipnodebyname functions.
Reference
http://osvdb.org/33098
http://secunia.com/advisories/24043
http://secunia.com/advisories/24101
http://secunia.com/advisories/24151
http://securitytracker.com/id?1017589
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.476916
http://us1.samba.org/samba/security/CVE-2007-0453.html
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.012.html
http://www.securityfocus.com/archive/1/459168/100/0/threaded
http://www.securityfocus.com/archive/1/459365/100/0/threaded
http://www.securityfocus.com/bid/22410
http://www.trustix.org/errata/2007/0007
http://www.vupen.com/english/advisories/2007/0483
https://exchange.xforce.ibmcloud.com/vulnerabilities/32231
https://issues.rpath.com/browse/RPL-1005
CVSS
Base:
4.6
Impact:
6.4
Exploitability:
3.9
Pristup
Vektor
Složenost
Autentikacija
LOCAL
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:L/AC:L/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
16-10-2018 - 16:32
Objavljeno
06-02-2007 - 02:28
