Samba-TNG < 0.3.1 Multiple Vulnerabilities (deprecated)

high Nessus Network Monitor Plugin ID 1341

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote Samba-TNG server is vulnerable to multiple flaws that may let an attacker gain a root shell on this host. As the version number did not change with the update, this alert might be a false positive

Solution

Upgrade to Samba-TNG 0.3.1

Plugin Details

Severity: High

ID: 1341

Family: Samba

Published: 8/20/2004

Updated: 9/16/2018

Nessus ID: 11442

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:samba:samba_server

Patch Publication Date: 3/31/2003

Vulnerability Publication Date: 3/31/2003

Exploitable With

CANVAS (CANVAS)

Core Impact

Metasploit (Samba 2.2.2 - 2.2.6 nttrans Buffer Overflow)

Reference Information

CVE: CVE-2003-0085, CVE-2003-0086

BID: 7206, 7106

Detections

Analytics