VDB
CVE-2004-0949
CVE-2004-0949
PUBLISHED
Reported by mitre · Published December 1, 2004
The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba servers to (1) read arbitrary kernel information or (2) raise a counter value to an arbitrary number by sending the first part of the fragmented packet multiple times.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a, n/a |
Timeline
- Dec 1, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- 20163 third-party-advisoryx_refsource_SECUNIA
- 11695 vdb-entryx_refsource_BID
- DSA-1082 vendor-advisoryx_refsource_DEBIAN
- MDKSA-2005:022 vendor-advisoryx_refsource_MANDRAKE
- 20041117 Advisory 14/2004: Linux 2.x smbfs multiple remote vulnerabilities mailing-listx_refsource_BUGTRAQ
- FLSA:2336 vendor-advisoryx_refsource_FEDORA
- oval:org.mitre.oval:def:10360 vdb-entrysignaturex_refsource_OVAL
- USN-30-1 vendor-advisoryx_refsource_UBUNTU
- x_refsource_MISC
- DSA-1070 vendor-advisoryx_refsource_DEBIAN
- RHSA-2004:537 vendor-advisoryx_refsource_REDHAT
- 20162 third-party-advisoryx_refsource_SECUNIA
- linux-smbrecvtrans2-memory-leak(18137) vdb-entryx_refsource_XF
- DSA-1067 vendor-advisoryx_refsource_DEBIAN
- DSA-1069 vendor-advisoryx_refsource_DEBIAN
- 2004-0061 vendor-advisoryx_refsource_TRUSTIX
- RHSA-2004:505 vendor-advisoryx_refsource_REDHAT
- 20202 third-party-advisoryx_refsource_SECUNIA
- RHSA-2004:504 vendor-advisoryx_refsource_REDHAT
- 13232 third-party-advisoryx_refsource_SECUNIA
…and 1 more