Signature Detail
Short Name |
SMB:SAMBA:SWAT-AUTH-DOS |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
SMB |
Keywords |
Samba Web Admin Tool Authorization Denial of Service |
Release Date |
2004/08/18 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SMB: Samba Web Admin Tool Authorization Denial of Service
This signature detects attempts to exploit a known vulnerability against SWAT, a Web front end for the Samba SMB server. Samba versions 3.0.2 to 3.0.4 are vulnerable. Attackers can send a maliciously crafted invalid Authorization string to a SWAT server to overflow a buffer in the SWAT service.
Extended Description
It has been reported that Samba Web Administration Tool (SWAT) is affected by a base64 decoder buffer overflow vulnerability. This issue is due to a failure of the application to properly validate buffer boundaries when copying user-supplied input into a finite buffer. Successful exploitation of this issue will allow a remote, unauthenticated attacker to execute arbitrary code on the affected computer with the privileges of the affected process; Samba typically runs with superuser privileges.
Affected Products
- Conectiva Linux 8.0.0
- Conectiva Linux 9.0.0
- Red Hat Fedora Core1
- Red Hat Fedora Core2
- Samba 2.0.0 .0
- Samba 2.0.1
- Samba 2.0.10
- Samba 2.0.2
- Samba 2.0.3
- Samba 2.0.4
- Samba 2.0.5
- Samba 2.0.6
- Samba 2.0.7
- Samba 2.0.8
- Samba 2.0.9
- Samba 2.2.0 .0
- Samba 2.2.0 .0A
- Samba 2.2.0 A
- Samba 2.2.1 A
- Samba 2.2.2
- Samba 2.2.3
- Samba 2.2.3 A
- Samba 2.2.4
- Samba 2.2.5
- Samba 2.2.6
- Samba 2.2.7
- Samba 2.2.7 A
- Samba 2.2.8
- Samba 2.2.8 A
- Samba 3.0.0
- Samba 3.0.0 Alpha
- Samba 3.0.1
- Samba 3.0.2
- Samba 3.0.2 A
- Samba 3.0.3
- Samba 3.0.4
- Samba 3.0.4 -R1
- Trustix Secure Enterprise Linux 2.0.0
- Trustix Secure Linux 1.5.0
- Trustix Secure Linux 2.0.0
- Trustix Secure Linux 2.1.0
References