SMB: Samba Web Admin Tool Authorization Denial of Service
This signature detects attempts to exploit a known vulnerability against SWAT, a Web front end for the Samba SMB server. Samba versions 3.0.2 to 3.0.4 are vulnerable. Attackers can send a maliciously crafted invalid Authorization string to a SWAT server to overflow a buffer in the SWAT service.
Extended Description
It has been reported that Samba Web Administration Tool (SWAT) is affected by a base64 decoder buffer overflow vulnerability. This issue is due to a failure of the application to properly validate buffer boundaries when copying user-supplied input into a finite buffer. Successful exploitation of this issue will allow a remote, unauthenticated attacker to execute arbitrary code on the affected computer with the privileges of the affected process; Samba typically runs with superuser privileges.
Affected Products
Samba samba
References
BugTraq: 10780
CVE: CVE-2004-0600
URL: http://www.mandriva.com/security/advisories?name=MDKSA-2004:071 http://www.securityfocus.com/advisories/6980
Short Name
SMB:SAMBA:SWAT-AUTH-DOS
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMB
Keywords
Admin Authorization CVE-2004-0600 Denial Samba Service Tool Web bid:10780 of
Release Date
08/18/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3725
Port
TCP/901
False Positive
Unknown
Vendors
Red_hat
Samba
Conectiva
Trustix
CVSS Score
10.0