Samba smbd FindNextPrintChangeNotify() Request Remote DoS

This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.


Synopsis :

The remote service is vulnerable to a denial of service.

Description :

The remote Samba server, according to its version number, is vulnerable
to a denial of service.

An attacker may be able to crash the remote samba server by sending a
FindNextPrintChangeNotify() request without previously issuing a
FindFirstPrintChangeNoticy() call.

It is reported that Windows XP SP2 generates such requests.

Solution :

Upgrade to Samba 2.2.11 or 3.0.6

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.3
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: Denial of Service

Nessus Plugin ID: 14381 ()

Bugtraq ID: 11055

CVE ID: CVE-2004-0829