Details of VAR-200305-0049

ID

VAR-200305-0049

CVE

CVE-2003-0201

TITLE

Samba contains multiple buffer overflows

Trust: 1.6

sources: CERT/CC: VU#267873 // CERT/CC: VU#267873

DESCRIPTION

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code. Samba contains several buffer overflow vulnerabilitites. Samba contains several buffer overflow vulnerabilitites. An updated version has been released. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ Samba 2.2.8 Previously, when dealing with files with very long file names, smbd/trans2.c Inside StrnCpy() There is a problem with buffer overflow in functions. StrnCpy(fname,pname,namelen) Marked StrnCpy() In the function namelen using pstring Type (1024 Byte char Type array ) Variables fname Within pname Copy for that reason, pname In 1024 By giving a value larger than bytes, it is possible to cause a buffer overflow and overwrite the memory area. (CAN-2003-0201) In addition, there are other potential buffer overflow issues that stem from this issue. 3 Have been found by vendors (CAN-2003-0196) , A corrected version for all these issues Samba 2.2.8a Is published. At this time, this problem (CAN-2003-0196) Details of are unknown.Please refer to the “Overview” for the impact of this vulnerability. The problem occurs when copying user-supplied data into a static buffer. By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt sensitive locations in memory. Samba-TNG 0.3.1 and earlier are also affected

Trust: 4.23

sources: NVD: CVE-2003-0201 // CERT/CC: VU#267873 // CERT/CC: VU#267873 // CERT/CC: VU#298233 // JVNDB: JVNDB-2003-000113 // BID: 7294 // VULHUB: VHN-7030 // VULMON: CVE-2003-0201

AFFECTED PRODUCTS

vendor:	apple computer	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	conectiva	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	debian	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	freebsd	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	gentoo linux	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	hewlett packard	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	ibm	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	mandrakesoft	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	montavista	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	openpkg	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	red hat	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	sgi	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	samba team	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	suse	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	sun microsystems	model:	-	scope:	-	version:	-	Trust: 2.4
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1	Trust: 1.9
vendor:	openbsd	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	sco	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	samba tng	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	slackware	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	sorceror linux	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	trustix	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	wirex	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0_pk4_bl18	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk5_bl19	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk4_bl18	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0a_pk3_bl17	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0_pk4_bl17	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk3_bl17	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk6_bl20	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0a	Trust: 1.6
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0f	Trust: 1.6
vendor:	samba	model:	samba	scope:	eq	version:	2.0.8	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.01	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.04	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.24	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.22	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.3	Trust: 1.3
vendor:	samba tng	model:	samba-tng	scope:	eq	version:	0.3	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.11	Trust: 1.3
vendor:	samba tng	model:	samba-tng	scope:	eq	version:	0.3.1	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	2.5.1	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.6	Trust: 1.3
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	2.6	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.20	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.4	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.0	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.7	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.5	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.8	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.9	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.1	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	7.0	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.4	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.10	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.0	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.6	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.0.2	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.7	Trust: 1.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.5	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.20	Trust: 1.3
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1b_pk1_bl1	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.07	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.08	Trust: 1.0
vendor:	samba	model:	samba	scope:	eq	version:	2.2.0a	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.09.01	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0f_pk7_bl18	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1b	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a_pk3_bl3	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0g	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.2	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.05	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.8	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.09.02	Trust: 1.0
vendor:	samba	model:	samba	scope:	eq	version:	2.2.3a	Trust: 1.0
vendor:	samba	model:	samba	scope:	eq	version:	2.2.7a	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0d_pk9_bl17	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.06	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0b	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.08.01	Trust: 1.0
vendor:	sun	model:	solaris	scope:	eq	version:	9.0	Trust: 1.0
vendor:	sun	model:	solaris	scope:	eq	version:	8.0	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0g_pk3_bl17	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a_pk2_bl2	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.1	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.4	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.3	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.00	Trust: 1.0
vendor:	samba	model:	samba	scope:	eq	version:	2.2.1a	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0f	Trust: 1.0
vendor:	hp	model:	cifs-9000 server	scope:	eq	version:	a.01.09	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.7	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.5.1	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0f_pk6_bl17	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a_pk1_bl1	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	-	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0d	Trust: 1.0
vendor:	samba	model:	samba	scope:	lte	version:	2.2.8	Trust: 0.8
vendor:	cybertrust	model:	asianux server	scope:	eq	version:	1.1	Trust: 0.8
vendor:	cybertrust	model:	asianux server	scope:	eq	version:	2.0	Trust: 0.8
vendor:	cybertrust	model:	asianux server	scope:	eq	version:	2.1	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq4	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq550	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raqxtr	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (x86)	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	6.5	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	7	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	8	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.00	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.11	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.22	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.1	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.2	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.3	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	8.0	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	9	Trust: 0.8
vendor:	compaq	model:	tru64 pk4	scope:	eq	version:	5.0	Trust: 0.6
vendor:	compaq	model:	tru64 pk4	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f pk6	scope:	eq	version:	4.0	Trust: 0.3
vendor:	compaq	model:	tru64 pk3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	ne	version:	x10.2.5	Trust: 0.3
vendor:	samba	model:	a	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.08.01	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.09.03	scope:	ne	version:	-	Trust: 0.3
vendor:	sun	model:	solaris x86	scope:	eq	version:	2.5.1	Trust: 0.3
vendor:	compaq	model:	tru64 b	scope:	eq	version:	4.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2	Trust: 0.3
vendor:	samba	model:	alpha	scope:	ne	version:	3.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.1	Trust: 0.3
vendor:	compaq	model:	tru64 g pk3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	samba	model:	.0a	scope:	eq	version:	2.2	Trust: 0.3
vendor:	compaq	model:	tru64 d pk9	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sun	model:	solaris 2.6 x86	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.09	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	cobalt raq 4100r	scope:	eq	version:	550	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.09.01	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 d	scope:	eq	version:	4.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.2	Trust: 0.3
vendor:	compaq	model:	tru64 g	scope:	eq	version:	4.0	Trust: 0.3
vendor:	compaq	model:	tru64 a	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sun	model:	solaris 8 sparc	scope:	-	version:	-	Trust: 0.3
vendor:	samba	model:	a	scope:	ne	version:	2.2.8	Trust: 0.3
vendor:	sun	model:	solaris	scope:	eq	version:	9	Trust: 0.3
vendor:	compaq	model:	tru64 f pk7	scope:	eq	version:	4.0	Trust: 0.3
vendor:	samba	model:	samba	scope:	eq	version:	2.2.2	Trust: 0.3
vendor:	compaq	model:	tru64 pk6	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.08	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.07	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.09.04	scope:	ne	version:	-	Trust: 0.3
vendor:	sun	model:	solaris 8 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	cobalt qube3 4000wg	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.09.02	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 a pk3	scope:	eq	version:	5.0	Trust: 0.3
vendor:	compaq	model:	tru64 a pk1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 b pk1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.06	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 a pk2	scope:	eq	version:	5.1	Trust: 0.3
vendor:	samba	model:	a	scope:	eq	version:	2.2.7	Trust: 0.3
vendor:	hp	model:	cifs/9000 server a.01.05	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	solaris 7.0 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	linux	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sun	model:	solaris 9 x86 update	scope:	eq	version:	2	Trust: 0.3
vendor:	compaq	model:	tru64 a	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 pk5	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f	scope:	eq	version:	4.0	Trust: 0.3
vendor:	compaq	model:	tru64 b	scope:	eq	version:	5.1	Trust: 0.3
vendor:	samba tng	model:	samba-tng	scope:	ne	version:	0.3.2	Trust: 0.3
vendor:	sun	model:	solaris 9 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	solaris ppc	scope:	eq	version:	2.5.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.3	Trust: 0.3
vendor:	compaq	model:	tru64 a pk3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	samba	model:	a	scope:	eq	version:	2.2.3	Trust: 0.3
vendor:	sun	model:	cobalt raq4 3001r	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	cobalt raq xtr 3500r	scope:	-	version:	-	Trust: 0.3

sources: CERT/CC: VU#267873 // CERT/CC: VU#267873 // CERT/CC: VU#298233 // BID: 7294 // JVNDB: JVNDB-2003-000113 // CNNVD: CNNVD-200305-012 // NVD: CVE-2003-0201

CVSS

SEVERITY

CVSSV2

CVSSV3

CARNEGIE MELLON:	VU#267873
value:	20.48
Trust: 1.6
nvd@nist.gov:	CVE-2003-0201
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#298233
value:	23.63
Trust: 0.8
NVD:	CVE-2003-0201
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200305-012
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-7030
value:	HIGH
Trust: 0.1
VULMON:	CVE-2003-0201
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2003-0201
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-7030
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#267873 // CERT/CC: VU#267873 // CERT/CC: VU#298233 // VULHUB: VHN-7030 // VULMON: CVE-2003-0201 // JVNDB: JVNDB-2003-000113 // CNNVD: CNNVD-200305-012 // NVD: CVE-2003-0201

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-0201

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200305-012

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 7294 // CNNVD: CNNVD-200305-012

CONFIGURATIONS

sources: JVNDB: JVNDB-2003-000113

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-7030 // VULMON: CVE-2003-0201

PATCH

title:	HPSBUX00254	url:	http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00956530	Trust: 0.8
title:	HPSBUX0304-254	url:	http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX0304-254.html	Trust: 0.8
title:	RHSA-2003:137	url:	https://rhn.redhat.com/errata/RHSA-2003-137.html	Trust: 0.8
title:	samba	url:	http://www.samba.org/samba/samba.html	Trust: 0.8
title:	53581	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-53581-1	Trust: 0.8
title:	53924	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-53924-1	Trust: 0.8
title:	53581	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-53581-3	Trust: 0.8
title:	53924	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-53924-3	Trust: 0.8
title:	TLSA-2003-27	url:	http://www.turbolinux.com/security/2003/TLSA-2003-27.txt	Trust: 0.8
title:	Top Page	url:	http://www.miraclelinux.com/	Trust: 0.8
title:	RHSA-2003:137	url:	http://www.jp.redhat.com/support/errata/RHSA/RHSA-2003-137J.html	Trust: 0.8
title:	TLSA-2003-27	url:	http://www.turbolinux.co.jp/security/2003/TLSA-2003-27j.txt	Trust: 0.8
title:	trans2open-CVE-2003-0201	url:	https://github.com/KernelPan1k/trans2open-CVE-2003-0201	Trust: 0.1
title:	Reporte-de-Resultados	url:	https://github.com/rebekattan/Reporte-de-Resultados	Trust: 0.1
title:	EQGRP	url:	https://github.com/bensongithub/EQGRP	Trust: 0.1
title:	Tools	url:	https://github.com/bl4ck4t/Tools	Trust: 0.1
title:	x0rzEQGRP	url:	https://github.com/happysmack/x0rzEQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/Nekkidso/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/391861737/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/Muhammd/EQGRP	Trust: 0.1
title:	ShadowBrokersFiles	url:	https://github.com/R3K1NG/ShadowBrokersFiles	Trust: 0.1
title:	EQGRP	url:	https://github.com/CKmaenn/EQGRP	Trust: 0.1
title:	EQGRP_Linux	url:	https://github.com/CybernetiX-S3C/EQGRP_Linux	Trust: 0.1
title:	EQGRP	url:	https://github.com/IHA114/EQGRP	Trust: 0.1
title:	ShadowBrokersFiles	url:	https://github.com/antiscammerarmy/ShadowBrokersFiles	Trust: 0.1
title:	shadowbrokerstuff	url:	https://github.com/thetrentusdev/shadowbrokerstuff	Trust: 0.1
title:	test	url:	https://github.com/DevKosov/test	Trust: 0.1
title:	EQGRP	url:	https://github.com/hackcrypto/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/Ninja-Tw1sT/EQGRP	Trust: 0.1
title:	leaked2	url:	https://github.com/kongjiexi/leaked2	Trust: 0.1
title:	bdhglopoj	url:	https://github.com/maxcvnd/bdhglopoj	Trust: 0.1
title:	shadowbrokerstuff	url:	https://github.com/shakenetwork/shadowbrokerstuff	Trust: 0.1
title:	x0rz-EQGRP	url:	https://github.com/r3p3r/x0rz-EQGRP	Trust: 0.1
title:	ShadowBrokersStuff	url:	https://github.com/thetrentus/ShadowBrokersStuff	Trust: 0.1
title:	EQ1	url:	https://github.com/thePevertedSpartan/EQ1	Trust: 0.1
title:	EQGRP	url:	https://github.com/Badbug6/EQGRP	Trust: 0.1
title:	EQGRP-nasa	url:	https://github.com/Soldie/EQGRP-nasa	Trust: 0.1
title:	EQGRP	url:	https://github.com/Mofty/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/thetrentus/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/NamanGangwar/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/x0rz/EQGRP	Trust: 0.1
title:	SB--.-HACK-the-EQGRP-1	url:	https://github.com/cipherreborn/SB--.-HACK-the-EQGRP-1	Trust: 0.1

sources: VULMON: CVE-2003-0201 // JVNDB: JVNDB-2003-000113

EXTERNAL IDS

db:	BID	id:	7294	Trust: 4.5
db:	NVD	id:	CVE-2003-0201	Trust: 4.5
db:	CERT/CC	id:	VU#267873	Trust: 4.2
db:	CERT/CC	id:	VU#298233	Trust: 2.4
db:	BID	id:	7106	Trust: 0.8
db:	BID	id:	7295	Trust: 0.8
db:	JVNDB	id:	JVNDB-2003-000113	Trust: 0.8
db:	BUGTRAQ	id:	20030408 [SORCERER-SPELLS] SAMBA--SORCERER2003-04-08	Trust: 0.6
db:	BUGTRAQ	id:	20030407 IMMUNIX SECURED OS 7+ SAMBA UPDATE	Trust: 0.6
db:	BUGTRAQ	id:	20030409 GLSA: SAMBA (200304-02)	Trust: 0.6
db:	BUGTRAQ	id:	20030407 [DDI-1013] BUFFER OVERFLOW IN SAMBA ALLOWS REMOTE ROOT COMPROMISE	Trust: 0.6
db:	SUSE	id:	SUSE-SA:2003:025	Trust: 0.6
db:	CONECTIVA	id:	CLA-2003:624	Trust: 0.6
db:	SGI	id:	20030403-01-P	Trust: 0.6
db:	MANDRAKE	id:	MDKSA-2003:044	Trust: 0.6
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:567	Trust: 0.6
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:2163	Trust: 0.6
db:	DEBIAN	id:	DSA-280	Trust: 0.6
db:	REDHAT	id:	RHSA-2003:137	Trust: 0.6
db:	CNNVD	id:	CNNVD-200305-012	Trust: 0.6
db:	SEEBUG	id:	SSVID-88770	Trust: 0.1
db:	SEEBUG	id:	SSVID-88737	Trust: 0.1
db:	SEEBUG	id:	SSVID-66978	Trust: 0.1
db:	SEEBUG	id:	SSVID-76273	Trust: 0.1
db:	SEEBUG	id:	SSVID-88826	Trust: 0.1
db:	SEEBUG	id:	SSVID-18016	Trust: 0.1
db:	SEEBUG	id:	SSVID-76271	Trust: 0.1
db:	SEEBUG	id:	SSVID-70847	Trust: 0.1
db:	SEEBUG	id:	SSVID-62711	Trust: 0.1
db:	SEEBUG	id:	SSVID-71372	Trust: 0.1
db:	SEEBUG	id:	SSVID-71376	Trust: 0.1
db:	SEEBUG	id:	SSVID-76272	Trust: 0.1
db:	SEEBUG	id:	SSVID-71360	Trust: 0.1
db:	SEEBUG	id:	SSVID-76270	Trust: 0.1
db:	EXPLOIT-DB	id:	22468	Trust: 0.1
db:	EXPLOIT-DB	id:	22469	Trust: 0.1
db:	EXPLOIT-DB	id:	10	Trust: 0.1
db:	EXPLOIT-DB	id:	16330	Trust: 0.1
db:	EXPLOIT-DB	id:	16861	Trust: 0.1
db:	EXPLOIT-DB	id:	22470	Trust: 0.1
db:	EXPLOIT-DB	id:	16876	Trust: 0.1
db:	EXPLOIT-DB	id:	16880	Trust: 0.1
db:	EXPLOIT-DB	id:	22471	Trust: 0.1
db:	EXPLOIT-DB	id:	9924	Trust: 0.1
db:	EXPLOIT-DB	id:	7	Trust: 0.1
db:	PACKETSTORM	id:	84541	Trust: 0.1
db:	PACKETSTORM	id:	84542	Trust: 0.1
db:	PACKETSTORM	id:	82311	Trust: 0.1
db:	VULHUB	id:	VHN-7030	Trust: 0.1
db:	EXPLOIT-DB	id:	55	Trust: 0.1
db:	VULMON	id:	CVE-2003-0201	Trust: 0.1

sources: CERT/CC: VU#267873 // CERT/CC: VU#267873 // CERT/CC: VU#298233 // VULHUB: VHN-7030 // VULMON: CVE-2003-0201 // BID: 7294 // JVNDB: JVNDB-2003-000113 // CNNVD: CNNVD-200305-012 // NVD: CVE-2003-0201

REFERENCES

url:	http://www.securityfocus.com/bid/7294	Trust: 4.2
url:	http://www.kb.cert.org/vuls/id/267873	Trust: 2.7
url:	http://www.digitaldefense.net/labs/advisories/ddi-1013.txt	Trust: 2.1
url:	http://www.debian.org/security/2003/dsa-280	Trust: 1.8
url:	http://www.mandriva.com/security/advisories?name=mdksa-2003:044	Trust: 1.8
url:	http://www.redhat.com/support/errata/rhsa-2003-137.html	Trust: 1.8
url:	ftp://patches.sgi.com/support/free/security/advisories/20030403-01-p	Trust: 1.8
url:	http://www.novell.com/linux/security/advisories/2003_025_samba.html	Trust: 1.8
url:	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624	Trust: 1.7
url:	http://lists.samba.org/pipermail/samba-announce/2003-april/000065.html	Trust: 1.6
url:	http://lists.samba.org/pipermail/samba-announce/2003-march/000063.html	Trust: 1.6
url:	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=can-2003-0201	Trust: 1.6
url:	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=can-2003-0196	Trust: 1.6
url:	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=can-2003-0085	Trust: 1.6
url:	http://www.kb.cert.org/vuls/id/298233	Trust: 1.6
url:	http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0008.html	Trust: 1.6
url:	http://www.samba-tng.org/download/tng/announcement-0.3.2.txt	Trust: 1.6
url:	http://www.samba-tng.org/	Trust: 1.6
url:	http://www.samba.org/	Trust: 1.6
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a2163	Trust: 1.2
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a567	Trust: 1.2
url:	http://marc.info/?l=bugtraq&m=104972664226781&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=104974612519064&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=104994564212488&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=104981682014565&w=2	Trust: 1.1
url:	http://www.samba.org/samba/whatsnew/samba-2.2.8.html	Trust: 0.8
url:	http://www.securityfocus.com/bid/7106	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2003-0201	Trust: 0.8
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2003-0201	Trust: 0.8
url:	http://www.securityfocus.com/bid/7295	Trust: 0.8
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104972664226781&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104994564212488&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104981682014565&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104974612519064&w=2	Trust: 0.6
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:567	Trust: 0.6
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:2163	Trust: 0.6
url:	http://www.info.apple.com/usen/security/security_updates.html	Trust: 0.3
url:	http://metasploit.com/projects/framework/exploits.html	Trust: 0.3
url:	http://www.samba.org	Trust: 0.3
url:	http://support.coresecurity.com/impact/exploits/e3a738fd21350fa2faa7e171b121f0d4.html	Trust: 0.3
url:	http://www.samba-tng.org	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f53581	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f53924	Trust: 0.3
url:	http://sunsolve.sun.com/patches/linux/security.html	Trust: 0.3
url:	http://seer.support.veritas.com/docs/256903.htm	Trust: 0.3
url:	/archive/1/317758	Trust: 0.3
url:	/archive/1/317985	Trust: 0.3
url:	http://marc.info/?l=bugtraq&m=104974612519064&w=2	Trust: 0.1
url:	http://marc.info/?l=bugtraq&m=104972664226781&w=2	Trust: 0.1
url:	http://marc.info/?l=bugtraq&m=104981682014565&w=2	Trust: 0.1
url:	http://marc.info/?l=bugtraq&m=104994564212488&w=2	Trust: 0.1
url:	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://github.com/kernelpan1k/trans2open-cve-2003-0201	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://www.exploit-db.com/exploits/55/	Trust: 0.1
url:	https://www.rapid7.com/db/modules/exploit/solaris/samba/trans2open	Trust: 0.1

CREDITS

Erik Parker※ erik.parker@digitaldefense.net

Trust: 0.6

sources: CNNVD: CNNVD-200305-012

SOURCES

db:	CERT/CC	id:	VU#267873
db:	CERT/CC	id:	VU#267873
db:	CERT/CC	id:	VU#298233
db:	VULHUB	id:	VHN-7030
db:	VULMON	id:	CVE-2003-0201
db:	BID	id:	7294
db:	JVNDB	id:	JVNDB-2003-000113
db:	CNNVD	id:	CNNVD-200305-012
db:	NVD	id:	CVE-2003-0201

LAST UPDATE DATE

2024-08-14T14:16:12.870000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#267873	date:	2003-07-10T00:00:00
db:	CERT/CC	id:	VU#267873	date:	2003-07-10T00:00:00
db:	CERT/CC	id:	VU#298233	date:	2003-05-15T00:00:00
db:	VULHUB	id:	VHN-7030	date:	2018-10-30T00:00:00
db:	VULMON	id:	CVE-2003-0201	date:	2018-10-30T00:00:00
db:	BID	id:	7294	date:	2009-07-11T21:06:00
db:	JVNDB	id:	JVNDB-2003-000113	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200305-012	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2003-0201	date:	2018-10-30T16:26:22.763

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#267873	date:	2003-04-10T00:00:00
db:	CERT/CC	id:	VU#267873	date:	2003-04-10T00:00:00
db:	CERT/CC	id:	VU#298233	date:	2003-03-17T00:00:00
db:	VULHUB	id:	VHN-7030	date:	2003-05-05T00:00:00
db:	VULMON	id:	CVE-2003-0201	date:	2003-05-05T00:00:00
db:	BID	id:	7294	date:	2003-04-07T00:00:00
db:	JVNDB	id:	JVNDB-2003-000113	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200305-012	date:	2003-04-07T00:00:00
db:	NVD	id:	CVE-2003-0201	date:	2003-05-05T04:00:00