Vulnerability in Conectiva Linux
CVE-2004-0930
The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.
EPSS: 0.049 (91.0th percentile) — read the EPSS interpretation.
Affected products
- Conectiva Linux — versions 10.0
- Gentoo Linux
- Samba — versions 3.0.0, 3.0.3, 3.0.4
- Sgi Samba — versions 3.0, 3.0.1, 3.0.2
- Redhat Enterprise_linux — versions 2.1, 3.0
- Redhat Enterprise_linux_desktop — versions 3.0
- Redhat Fedora_core — versions core_2.0, core_3.0
- Redhat Linux_advanced_workstation — versions 2.1
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_UBUNTU, vendor-advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRAKE)
- cve@mitre.org (vendor-advisory, x_refsource_CONECTIVA)
- cve@mitre.org (x_refsource_IDEFENSE, Exploit, Patch, Vendor Advisory, third-party-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_SUNALERT)
- cve@mitre.org (vendor-advisory, x_refsource_OPENPKG)
- cve@mitre.org (vendor-advisory, x_refsource_APPLE)
- cve@mitre.org (vendor-advisory, x_refsource_GENTOO)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)