// For flags

CVE-2007-0452

 

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infinite loop.

smbd en Samba 3.0.6 hasta 3.0.23d permite a usuarios autenticados remotamente provocar una denegaciĆ³n de servicio (agotamiento de memoria y CPU) renombrando un archivo de una forma que previene que una peticiĆ³n sea eliminada de la cola abierta referenciada, lo cual dispara un bucle infinito.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
Single
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-01-23 CVE Reserved
  • 2007-02-06 CVE Published
  • 2024-04-03 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (41)
URL Tag Source
http://osvdb.org/33100 Vdb Entry
http://secunia.com/advisories/24021 Third Party Advisory
http://secunia.com/advisories/24030 Third Party Advisory
http://secunia.com/advisories/24046 Third Party Advisory
http://secunia.com/advisories/24060 Third Party Advisory
http://secunia.com/advisories/24067 Third Party Advisory
http://secunia.com/advisories/24076 Third Party Advisory
http://secunia.com/advisories/24101 Third Party Advisory
http://secunia.com/advisories/24140 Third Party Advisory
http://secunia.com/advisories/24145 Third Party Advisory
http://secunia.com/advisories/24151 Third Party Advisory
http://secunia.com/advisories/24188 Third Party Advisory
http://secunia.com/advisories/24284 Third Party Advisory
http://secunia.com/advisories/24792 Third Party Advisory
http://securityreason.com/securityalert/2219 Third Party Advisory
http://securitytracker.com/id?1017587 Vdb Entry
http://us1.samba.org/samba/security/CVE-2007-0452.html X_refsource_confirm
http://www.securityfocus.com/archive/1/459167/100/0/threaded Mailing List
http://www.securityfocus.com/archive/1/459365/100/0/threaded Mailing List
http://www.securityfocus.com/bid/22395 Vdb Entry
http://www.vupen.com/english/advisories/2007/0483 Vdb Entry
http://www.vupen.com/english/advisories/2007/1278 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/32301 Vdb Entry
https://issues.rpath.com/browse/RPL-1005 X_refsource_confirm
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9758 Signature
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.6
Search vendor "Samba" for product "Samba" and version "3.0.6"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.7
Search vendor "Samba" for product "Samba" and version "3.0.7"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.8
Search vendor "Samba" for product "Samba" and version "3.0.8"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.9
Search vendor "Samba" for product "Samba" and version "3.0.9"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.10
Search vendor "Samba" for product "Samba" and version "3.0.10"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.11
Search vendor "Samba" for product "Samba" and version "3.0.11"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.12
Search vendor "Samba" for product "Samba" and version "3.0.12"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.13
Search vendor "Samba" for product "Samba" and version "3.0.13"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.14a
Search vendor "Samba" for product "Samba" and version "3.0.14a"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.20
Search vendor "Samba" for product "Samba" and version "3.0.20"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.20a
Search vendor "Samba" for product "Samba" and version "3.0.20a"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.20b
Search vendor "Samba" for product "Samba" and version "3.0.20b"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.21
Search vendor "Samba" for product "Samba" and version "3.0.21"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.21a
Search vendor "Samba" for product "Samba" and version "3.0.21a"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.21b
Search vendor "Samba" for product "Samba" and version "3.0.21b"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.21c
Search vendor "Samba" for product "Samba" and version "3.0.21c"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.22
Search vendor "Samba" for product "Samba" and version "3.0.22"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.23
Search vendor "Samba" for product "Samba" and version "3.0.23"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.23a
Search vendor "Samba" for product "Samba" and version "3.0.23a"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.23b
Search vendor "Samba" for product "Samba" and version "3.0.23b"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.23c
Search vendor "Samba" for product "Samba" and version "3.0.23c"
-
Affected
Samba
Search vendor "Samba"
Samba
Search vendor "Samba" for product "Samba"
3.0.23d
Search vendor "Samba" for product "Samba" and version "3.0.23d"
-
Affected