What is CVE-2007-2446?

CVE-2007-2446 is a vulnerability in N/a. Published 2007-05-14.

Is CVE-2007-2446 known to be exploited?

10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2007-2446

Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (s…

EPSS: 0.892 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

GLSA-200705-15 (vendor-advisory, x_refsource_GENTOO)
20070515 ZDI-07-032: Samba sec_io_acl Heap Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
25289 (x_refsource_SECUNIA, third-party-advisory)
20070920 VMSA-2007-0006 Critical security updates for all supported versions of VMware ESX Server, VMware Server, VMware Workstation, VMware ACE, and VMware Player (mailing-list, x_refsource_FULLDISC)
20070515 ZDI-07-031: Samba smb_io_notify_option_type_data Heap Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
20070515 ZDI-07-029: Samba lsa_io_privilege_set Heap Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
www.samba.org/samba/security/CVE-2007-2446.html (x_refsource_CONFIRM)
samba-lsaiotransnames-bo(34316) (vdb-entry, x_refsource_XF)
www.xerox.com/downloads/usa/en/c/cert_XRX08_001.pdf (x_refsource_CONFIRM)
ADV-2007-2732 (vdb-entry, x_refsource_VUPEN)

Frequently asked questions

What is CVE-2007-2446?: CVE-2007-2446 is a vulnerability in N/a. Published 2007-05-14.
Is CVE-2007-2446 known to be exploited?: 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.