Description
smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2.
Product(s):
- Samba 1.9.17
- Samba 1.9.17 p1
- Samba 1.9.17 p2
- Samba 1.9.17 p3
- Samba 1.9.17 p4
- Samba 1.9.17 p5
- Samba 1.9.18
- Samba 1.9.18 p10
- Samba 1.9.18 p1
- Samba 1.9.18 p2
- Samba 1.9.18 p3
- Samba 1.9.18 p4
- Samba 1.9.18 p5
- Samba 1.9.18 p6
- Samba 1.9.18 p7
- Samba 1.9.18 p8
- Samba 2.0.0
- Samba 2.0.1
- Samba 2.0.2
- Samba 2.0.3
- Samba 2.0.4
- Samba 2.0.5
- Samba 2.0.5a
- Samba Samba 2.0.5a
- Samba 2.0.6
- Samba 2.0.7
- Samba 2.2.0
- Samba 2.2.0a
- Samba 2.2.10
- Samba 2.2.1
- Samba 2.2.1a
- Samba 2.2.2
- Samba 2.2.3
- Samba 2.2.3a
- Samba Samba 2.2.3a
- Samba 2.2.4
- Samba 2.2.5
- Samba 2.2.6
- Samba 2.2.7
- Samba 2.2.7a
- Samba Samba 2.2.7a
- Samba 2.2.8
- Samba 2.2.8a
- Samba Samba 2.2.8a
- Samba 2.2.9
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2004-0829, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2004-0829 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.