CVE-2014-3560high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in the unstrcpy macro in string_wrappers.h.
References
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136280.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136864.html
http://lists.opensuse.org/opensuse-updates/2014-08/msg00027.html
http://secunia.com/advisories/59583
http://secunia.com/advisories/59610
http://secunia.com/advisories/59976
http://www.samba.org/samba/security/CVE-2014-3560
http://www.securityfocus.com/bid/69021
http://www.securitytracker.com/id/1030663
http://www.ubuntu.com/usn/USN-2305-1
https://bugzilla.redhat.com/show_bug.cgi?id=1126010
https://exchange.xforce.ibmcloud.com/vulnerabilities/95081
https://git.samba.org/?p=samba.git;a=commitdiff;h=e6a848630da3ba958c442438ea131c99fa088605
https://git.samba.org/?p=samba.git;a=commitdiff;h=fb1d325d96dfe9bc2e9c4ec46ad4c55e8f18f4a2
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Configuration 2
OR
cpe:2.3:a:samba:samba:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.7:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.1.8:*:*:*:*:*:*:*
Configuration 3
OR
cpe:2.3:a:samba:samba:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.8:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.11:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.12:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.13:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.14:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.15:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.16:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.17:*:*:*:*:*:*:*
cpe:2.3:a:samba:samba:4.0.18:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 8759 | Samba 4.x < 4.0.21 / 4.1.x < 4.1.11 nmbd Remote Code Execution | Nessus Network Monitor | Samba | high |
| 77296 | openSUSE Security Update : samba (openSUSE-SU-2014:1040-1) | Nessus | SuSE Local Security Checks | high |
| 77268 | Fedora 19 : samba-4.0.21-1.fc19 (2014-9132) | Nessus | Fedora Local Security Checks | high |
| 77073 | Fedora 20 : samba-4.1.9-4.fc20 (2014-9141) | Nessus | Fedora Local Security Checks | high |
| 77058 | CentOS 7 : samba (CESA-2014:1008) | Nessus | CentOS Local Security Checks | high |
| 77017 | Scientific Linux Security Update : samba4 on SL6.x i386/x86_64 (20140805) | Nessus | Scientific Linux Local Security Checks | high |
| 77013 | RHEL 6 : samba4 (RHSA-2014:1009) | Nessus | Red Hat Local Security Checks | high |
| 77012 | RHEL 7 : samba (RHSA-2014:1008) | Nessus | Red Hat Local Security Checks | high |
| 77010 | Oracle Linux 6 : samba4 (ELSA-2014-1009) | Nessus | Oracle Linux Local Security Checks | high |
| 77009 | Oracle Linux 7 : samba (ELSA-2014-1008) | Nessus | Oracle Linux Local Security Checks | high |
| 77006 | CentOS 6 : samba4 (CESA-2014:1009) | Nessus | CentOS Local Security Checks | high |
| 76991 | Ubuntu 14.04 LTS : samba vulnerability (USN-2305-1) | Nessus | Ubuntu Local Security Checks | high |
| 76985 | FreeBSD : samba -- remote code execution (89ff45e3-1a57-11e4-bebd-000c2980a9f3) | Nessus | FreeBSD Local Security Checks | high |
| 76974 | Slackware 14.1 / current : samba (SSA:2014-213-01) | Nessus | Slackware Local Security Checks | high |
| 76973 | Samba 4.x < 4.0.21 / 4.1.11 nmbd Remote Code Execution | Nessus | Misc. | high |