CVE-2007-0452

Description

smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infinite loop.

6.8

CVSS

Severity: Medium

CVSS 2.0 •

EPSS 2.46% Top 20%

Vendor Advisory hp.com Vendor Advisory gentoo.org Vendor Advisory redhat.com Vendor Advisory mandriva.com Vendor Advisory trustix.org Vendor Advisory ubuntu.com Vendor Advisory sun.com Vendor Advisory fedoranews.org Vendor Advisory redhat.com Vendor Advisory fedoranews.org Vendor Advisory sgi.com Vendor Advisory slackware.com Vendor Advisory debian.org Vendor Advisory suse.com

Affected: n/a n/a

References

Link	Tags
http://secunia.com/advisories/24046	third party advisory
http://secunia.com/advisories/24101	third party advisory
http://secunia.com/advisories/24076	third party advisory
http://www.securityfocus.com/archive/1/459365/100/0/threaded	mailing list
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00943462	vendor advisory
http://www.gentoo.org/security/en/glsa/glsa-200702-01.xml	vendor advisory
http://securityreason.com/securityalert/2219	third party advisory
http://www.vupen.com/english/advisories/2007/1278	vdb entry
http://secunia.com/advisories/24151	third party advisory
http://www.vupen.com/english/advisories/2007/0483	vdb entry
http://secunia.com/advisories/24030	third party advisory
http://secunia.com/advisories/24140	third party advisory
http://us1.samba.org/samba/security/CVE-2007-0452.html
http://secunia.com/advisories/24021	third party advisory
http://secunia.com/advisories/24284	third party advisory
http://www.securityfocus.com/archive/1/459167/100/0/threaded	mailing list
http://www.securityfocus.com/bid/22395	vdb entry
https://issues.rpath.com/browse/RPL-1005
http://securitytracker.com/id?1017587	vdb entry
http://secunia.com/advisories/24067	third party advisory
http://secunia.com/advisories/24145	third party advisory
http://secunia.com/advisories/24060	third party advisory
http://www.redhat.com/support/errata/RHSA-2007-0060.html	vendor advisory
http://osvdb.org/33100	vdb entry
http://www.mandriva.com/security/advisories?name=MDKSA-2007:034	vendor advisory
http://www.trustix.org/errata/2007/0007	vendor advisory
http://www.ubuntu.com/usn/usn-419-1	vendor advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200588-1	vendor advisory
http://fedoranews.org/cms/node/2579	vendor advisory
http://www.redhat.com/support/errata/RHSA-2007-0061.html	vendor advisory
http://fedoranews.org/cms/node/2580	vendor advisory
ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc	vendor advisory
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.476916	vendor advisory
http://secunia.com/advisories/24792	third party advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/32301	vdb entry
http://www.debian.org/security/2007/dsa-1257	vendor advisory
http://secunia.com/advisories/24188	third party advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9758	signature vdb entry
http://lists.suse.com/archive/suse-security-announce/2007-Feb/0002.html	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2007-0452?: CVE-2007-0452 has been scored as a medium severity vulnerability.
How to fix CVE-2007-0452?: To fix CVE-2007-0452, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2007-0452 being actively exploited in the wild?: It is possible that CVE-2007-0452 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~2% probability that this vulnerability will be exploited by malicious actors in the next 30 days.