This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.
The remote Samba server is affected by several vulnerabilities that
could lead to remote code execution
According to its version number, the remote Samba server is affected
by several flaws :
- A denial of service issue occuring if an authenticated
attacker sends a large number of CIFS session requests
which will cause an infinite loop to occur in the smbd
daemon, thus utilizing CPU resources and denying access
to legitimate users
- A remote format string vulnerability that could be
exploited by an attacker with write access to a remote
share by sending a malformed request to the remote
service (this issue only affects installations sharing
an AFS file system when the afsacl.so VFS module is
- A remote buffer overflow vulnerability affecting the NSS
lookup capability of the remote winbindd daemon
Upgrade to Samba 3.0.24 or newer
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : false
Nessus Plugin ID: 24685 ()
Bugtraq ID: 223952240322410
CVE ID: CVE-2007-0452CVE-2007-0453CVE-2007-0454
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.