Samba smbd FindNextPrintChangeNotify() Request Remote DoS

This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.

Synopsis :

The remote service is vulnerable to a denial of service.

Description :

The remote Samba server, according to its version number, is vulnerable
to a denial of service.

An attacker may be able to crash the remote samba server by sending a
FindNextPrintChangeNotify() request without previously issuing a
FindFirstPrintChangeNoticy() call.

It is reported that Windows XP SP2 generates such requests.

Solution :

Upgrade to Samba 2.2.11 or 3.0.6

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true

Family: Denial of Service

Nessus Plugin ID: 14381 ()

Bugtraq ID: 11055

CVE ID: CVE-2004-0829