https://www.samba.org/samba/security/CVE-2007-2444.html
https://www.samba.org/samba/security/CVE-2007-2446.html
Severity: High
ID: 25233
File Name: fedora_2007-506.nasl
Version: 1.17
Type: local
Agent: unix
Family: Fedora Local Security Checks
Published: 5/16/2007
Updated: 1/11/2021
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Factor: Medium
Score: 5.9
Risk Factor: High
Base Score: 7.2
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CPE: p-cpe:/a:fedoraproject:fedora:samba-swat, p-cpe:/a:fedoraproject:fedora:samba-debuginfo, p-cpe:/a:fedoraproject:fedora:samba-client, cpe:/o:fedoraproject:fedora_core:5, p-cpe:/a:fedoraproject:fedora:samba, p-cpe:/a:fedoraproject:fedora:samba-common
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/14/2007
Core Impact
Metasploit (Samba "username map script" Command Execution)
CVE: CVE-2007-2444, CVE-2007-2447
FEDORA: 2007-506