Home

CVE-2011-0719

Description

Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial of service (stack memory corruption, and infinite loop or daemon crash) by opening a large number of files, related to (1) Winbind or (2) smbd.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
12.102

Associated Vulnerability

VulnerabilityOS Platform
Libsmbclient update (ELSA-2018-1860) libsmbclient-3.6.23-51.0.1.el6.x86_64.rpmLinux
Libsmbclient-devel update (ELSA-2018-1860) libsmbclient-devel-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba update (ELSA-2018-1860) samba-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-client update (ELSA-2018-1860) samba-client-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-common update (ELSA-2018-1860) samba-common-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-doc update (ELSA-2018-1860) samba-doc-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-domainjoin-gui update (ELSA-2018-1860) samba-domainjoin-gui-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-glusterfs update (ELSA-2018-1860) samba-glusterfs-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-swat update (ELSA-2018-1860) samba-swat-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-winbind update (ELSA-2018-1860) samba-winbind-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-winbind-clients update (ELSA-2018-1860) samba-winbind-clients-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-winbind-devel update (ELSA-2018-1860) samba-winbind-devel-3.6.23-51.0.1.el6.x86_64.rpmLinux
Samba-winbind-krb5-locator update (ELSA-2018-1860) samba-winbind-krb5-locator-3.6.23-51.0.1.el6.x86_64.rpmLinux
Libsmbclient update (ELSA-2018-1860) libsmbclient-3.6.23-51.0.1.el6.i686.rpmLinux
Libsmbclient-devel update (ELSA-2018-1860) libsmbclient-devel-3.6.23-51.0.1.el6.i686.rpmLinux
Samba update (ELSA-2018-1860) samba-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-client update (ELSA-2018-1860) samba-client-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-common update (ELSA-2018-1860) samba-common-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-doc update (ELSA-2018-1860) samba-doc-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-domainjoin-gui update (ELSA-2018-1860) samba-domainjoin-gui-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-swat update (ELSA-2018-1860) samba-swat-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-winbind update (ELSA-2018-1860) samba-winbind-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-winbind-clients update (ELSA-2018-1860) samba-winbind-clients-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-winbind-devel update (ELSA-2018-1860) samba-winbind-devel-3.6.23-51.0.1.el6.i686.rpmLinux
Samba-winbind-krb5-locator update (ELSA-2018-1860) samba-winbind-krb5-locator-3.6.23-51.0.1.el6.i686.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234