FreeBSD Ports: Samba Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://us4.samba.org/samba/security/CVE-2004-0930.html http://www.vuxml.org/freebsd/ba13dc13-340d-11d9-ac1b-000d614f7fad.html

Insight

The following package is affected: samba CVE-2004-0930 The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.

Severity

Classification

CVE CVE-2004-0930

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

FreeBSD Ports: cacti
FreeBSD Ports: apache
FreeBSD Ports: apache
FreeBSD Ports: asterisk, asterisk-bristuff
FreeBSD Ports: bugzilla

FreeBSD Ports: samba

Take action and discover your vulnerabilities