Samba Multiple Remote Vulnerabilities

This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.

Synopsis :

The remote service is vulnerable to several flaws.

Description :

The remote Samba server, according to its version number, is affected
by a remote denial of service vulnerability as well as a buffer

The Wild Card DoS vulnerability may allow an attacker to make the
remote server consume excessive CPU cycles.

The QFILEPATHINFO Remote buffer overflow vulnerability may allow an
attacker to execute code on the server.

An attacker needs a valid account or enough credentials to exploit
those flaws.

See also :

Solution :

Upgrade to Samba 3.0.8 or later.

Risk factor :

High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 15705 ()

Bugtraq ID: 11624

CVE ID: CVE-2004-0882