CVE-2010-2063

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Buffer overflow in the SMB1 packet chaining implementation in the chain_reply function in process.c in smbd in Samba 3.0.x before 3.3.13 allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted field in a packet.

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=873

http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

http://marc.info/?l=bugtraq&m=129138831608422&w=2

http://marc.info/?l=bugtraq&m=130835366526620&w=2

http://marc.info/?l=samba-announce&m=127668712312761&w=2

http://osvdb.org/65518

http://secunia.com/advisories/40145

http://secunia.com/advisories/40210

http://secunia.com/advisories/40221

http://secunia.com/advisories/40293

http://secunia.com/advisories/42319

http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.471914

http://support.apple.com/kb/HT4312

http://ubuntu.com/usn/usn-951-1

http://www.debian.org/security/2010/dsa-2061

http://www.mandriva.com/security/advisories?name=MDVSA-2010:119

http://www.redhat.com/support/errata/RHSA-2010-0488.html

http://www.samba.org/samba/ftp/history/samba-3.3.13.html

http://www.samba.org/samba/ftp/patches/security/samba-3.0.37-CVE-2010-2063.patch

http://www.samba.org/samba/ftp/patches/security/samba-3.3.12-CVE-2010-2063.patch

http://www.samba.org/samba/security/CVE-2010-2063.html

http://www.securityfocus.com/bid/40884

http://www.securitytracker.com/id?1024107

http://www.vupen.com/english/advisories/2010/1486

http://www.vupen.com/english/advisories/2010/1504

http://www.vupen.com/english/advisories/2010/1505

http://www.vupen.com/english/advisories/2010/1507

http://www.vupen.com/english/advisories/2010/1517

http://www.vupen.com/english/advisories/2010/3063

https://exchange.xforce.ibmcloud.com/vulnerabilities/59481

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12427

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7115

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9859

Details

Source: MITRE

Published: 2010-06-17

Updated: 2018-10-30

Type: CWE-119

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.2a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.4:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.14a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.18:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.19:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21c:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.22:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23c:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23d:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.24:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:pre1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:pre2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:rc2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:rc3:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25c:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.26:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.26a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.27:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.27a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.28:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.28a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.29:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.30:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.31:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.32:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.33:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.34:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.35:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.36:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.37:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.1.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* versions up to 3.3.12 (inclusive)

Tenable Plugins

View all (20 total)

IDNameProductFamilySeverity
89741VMware ESX Multiple Vulnerabilities (VMSA-2010-0013) (remote check)NessusVMware ESX Local Security Checks
high
68051Oracle Linux 3 / 4 / 5 : samba / samba3x (ELSA-2010-0488)NessusOracle Linux Local Security Checks
high
60805Scientific Linux Security Update : samba on SL3.x, SL4.x i386/x86_64NessusScientific Linux Local Security Checks
high
60804Scientific Linux Security Update : samba and samba3x on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
59675GLSA-201206-22 : Samba: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
50894SuSE 11 Security Update : (SAT Patch Number 2544)NessusSuSE Local Security Checks
high
49835SuSE 10 Security Update : Samba (ZYPP Patch Number 7072)NessusSuSE Local Security Checks
high
49085VMSA-2010-0013 : VMware ESX third-party updates for Service ConsoleNessusVMware ESX Local Security Checks
high
48424Mac OS X Multiple Vulnerabilities (Security Update 2010-005)NessusMacOS X Local Security Checks
high
47572openSUSE Security Update : cifs-mount (openSUSE-SU-2010:0346-1)NessusSuSE Local Security Checks
high
47570openSUSE Security Update : cifs-mount (openSUSE-SU-2010:0346-1)NessusSuSE Local Security Checks
high
47568SuSE9 Security Update : Samba (YOU Patch Number 12622)NessusSuSE Local Security Checks
high
47103Debian DSA-2061-1 : samba - memory corruptionNessusDebian Local Security Checks
high
47101CentOS 3 / 4 / 5 : samba / samba3x (CESA-2010:0488)NessusCentOS Local Security Checks
high
47047Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 : samba (SSA:2010-169-01)NessusSlackware Local Security Checks
high
47042Mandriva Linux Security Advisory : samba (MDVSA-2010:119)NessusMandriva Local Security Checks
high
47036Samba 3.x < 3.3.13 SMB1 Packet Chaining Memory CorruptionNessusMisc.
high
47035Ubuntu 6.06 LTS / 8.04 LTS / 9.04 : samba vulnerability (USN-951-1)NessusUbuntu Local Security Checks
high
47034RHEL 3 / 4 / 5 : samba and samba3x (RHSA-2010:0488)NessusRed Hat Local Security Checks
high
5572Samba 3.x < 3.3.13 SMB1 Packet Chaining Memory CorruptionNessus Network MonitorSamba
critical