Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2003-0201

Published: 05/05/2003 Updated: 30/10/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x prior to 2.2.8a, 2.0.10 and previous versions 2.0.x versions, and Samba-TNG prior to 0.3.2, allows remote malicious users to execute arbitrary code.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

samba samba 2.2.1a

samba samba 2.0.10

samba-tng samba-tng 0.3.1

samba samba 2.0.1

samba samba 2.2.3a

samba samba 2.0.2

samba samba 2.0.6

samba samba 2.0.4

samba samba 2.2.7a

samba samba 2.2.4

samba samba 2.0.9

samba samba 2.0.3

samba samba 2.2.6

samba samba 2.2.8

samba samba 2.2.0a

samba samba 2.0.7

samba samba 2.0.8

samba samba 2.0.5

samba samba 2.2.0

samba samba 2.0.0

samba samba 2.2.5

samba samba 2.2.7

samba-tng samba-tng 0.3

compaq tru64 5.0a pk3 bl17

hp hp-ux 11.11

compaq tru64 5.1 pk3 bl17

hp hp-ux 10.01

compaq tru64 4.0d pk9 bl17

sun solaris 2.5.1

apple mac os x 10.2.1

hp hp-ux 11.04

compaq tru64 5.1 pk4 bl18

compaq tru64 4.0d

compaq tru64 5.0 pk4 bl18

compaq tru64 5.0 pk4 bl17

compaq tru64 5.0

compaq tru64 5.1b pk1 bl1

sun sunos 5.7

compaq tru64 4.0f pk6 bl17

compaq tru64 4.0g

compaq tru64 4.0g pk3 bl17

apple mac os x 10.2.4

sun sunos 5.8

sun solaris 9.0

compaq tru64 5.0a

apple mac os x 10.2.2

hp hp-ux 11.00

compaq tru64 5.1a pk3 bl3

compaq tru64 4.0f

compaq tru64 4.0b

hp hp-ux 10.24

sun solaris 7.0

hp hp-ux 11.22

compaq tru64 5.1 pk6 bl20

compaq tru64 5.1 pk5 bl19

compaq tru64 5.1a

sun sunos 5.5.1

hp hp-ux 10.20

compaq tru64 5.1b

compaq tru64 5.1

compaq tru64 5.1a pk2 bl2

compaq tru64 5.0f

apple mac os x 10.2.3

compaq tru64 4.0f pk7 bl18

hp hp-ux 11.20

sun solaris 2.6

compaq tru64 5.1a pk1 bl1

apple mac os x 10.2

sun solaris 8.0

sun sunos -

hp cifs-9000 server a.01.08.01

hp cifs-9000 server a.01.06

hp cifs-9000 server a.01.07

hp cifs-9000 server a.01.09

hp cifs-9000 server a.01.09.01

hp cifs-9000 server a.01.05

hp cifs-9000 server a.01.08

hp cifs-9000 server a.01.09.02

Exploits

Exploit DB: Samba 2.2.8 (Linux x86) - 'trans2open' Remote Overflow (Metasploit)
## # $Id: trans2openrb 9828 2010-07-14 17:27:23Z hdm $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metaspl ...
Exploit DB: Samba < 2.2.8 (Linux/BSD) - Remote Code Execution
/* Remote root exploit for Samba 22x and prior that works against Linux (all distributions), FreeBSD (4x, 5x), NetBSD (1x) and OpenBSD (2x, 3x and 32 non-executable stack) sambalc is able to identify samba boxes It will send a netbios name packet to port 137 If the box responds with the mac address 00-00-00-00 ...
Exploit DB: Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (2)
/* source: wwwsecurityfocuscom/bid/7294/info A buffer overflow vulnerability has been reported for Samba The problem occurs when copying user-supplied data into a static buffer By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt sensitive locations in memory Successful exploitat ...
Exploit DB: Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (4)
source: wwwsecurityfocuscom/bid/7294/info A buffer overflow vulnerability has been reported for Samba The problem occurs when copying user-supplied data into a static buffer By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt sensitive locations in memory Successful exploita ...
Exploit DB: Samba 2.2.0 < 2.2.8 (OSX) - trans2open Overflow (Metasploit)
## # $Id$ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metasploit3 &lt; Msf::Exploit::Remote include Ms ...
Exploit DB: Samba 2.2.8 - Brute Force Method Remote Command Execution
/* * Mass Samba Exploit by Schizoprenic * Xnuxer-Research (c) 2003 * This code just for eduction purpose */ #include &lt;stdioh&gt; #include &lt;stdlibh&gt; #include &lt;sys/stath&gt; void usage(char *s) { printf("Usage: %s \n",s); exit(-1); } int main(int argc, char **argv) { printf("Mass Samba Exploit by Schizoprenic\n"); ...
Exploit DB: Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (3)
source: wwwsecurityfocuscom/bid/7294/info A buffer overflow vulnerability has been reported for Samba The problem occurs when copying user-supplied data into a static buffer By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt sensitive locations in memory Successful exploitati ...
Exploit DB: Samba 2.2.8 (Solaris SPARC) - 'trans2open' Remote Overflow (Metasploit)
## # $Id: trans2openrb 9571 2010-06-21 16:53:52Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metas ...
Exploit DB: Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (1)
source: wwwsecurityfocuscom/bid/7294/info A buffer overflow vulnerability has been reported for Samba The problem occurs when copying user-supplied data into a static buffer By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt sensitive locations in memory Successful exploitation o ...
Exploit DB: Samba 2.2.x - Remote Buffer Overflow
#!/usr/bin/perl ############### ##[ Header # Name: trans2rootpl # Purpose: Proof of concept exploit for Samba 22x (trans2open overflow) # Author: H D Moore &lt;hdmoore@digitaldefensenet&gt; # Copyright: Copyright (C) 2003 Digital Defense Inc # trans2rootpl &lt;options&gt; -t &lt;target type&gt; -H &lt;your ip&gt; - ...
Exploit DB: Samba 2.2.8 (OSX/PPC) - 'trans2open' Remote Overflow (Metasploit)
## # $Id: trans2openrb 9571 2010-06-21 16:53:52Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metas ...
Exploit DB: Samba 2.2.8 (BSD x86) - 'trans2open' Remote Overflow (Metasploit)
## # $Id: trans2openrb 9552 2010-06-17 22:11:43Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metas ...

Github Repositories

https://github.com/rebekattan/Reporte-de-Resultados

Reporte de resultados de la vulnerabilidad encontrada en el protocolo smb de kioptrix level 1

Vulnerabilidad en puerto 139 / protocolo smb Descripción SMB (Server Message Block) es un protocolo cliente-servidor que controla el acceso a archivos y directorios enteros, así como a otros recursos de la red, como impresoras, routers o interfaces compartidas con la red Una vulneración a este protocolo podría significar el acceso no autorizado de u

https://github.com/2davic3/Reporte

Reporte Vulnerabilidad Openluck Kioptrix nivel 1 Descripcion SSL es una tecnología estandarizada que permite cifrar el tráfico de datos entre un navegador web y un sitio web (o entre dos servidores web), protegiendo así la conexión Esto impide que un hacker pueda ver o interceptar la información que se transmite de un punto a otro, y que pued

https://github.com/KernelPan1k/trans2open-CVE-2003-0201

Samba exploit CVE2003-0201

Samba versions 220 to 228 This exploits the buffer overflow found in Samba versions 220 to 228 This particular module is capable of exploiting the flaw on x86 Linux systems that do not have the noexec stack option set NOTE: Some older versions of RedHat do not seem to be vulnerable since they apparently do not allow anonymous access to IPC CVE CVE-2003-0201 OSVDB-44

References

NVD-CWE-Otherhttp://www.debian.org/security/2003/dsa-280http://www.securityfocus.com/bid/7294http://www.digitaldefense.net/labs/advisories/DDI-1013.txthttp://www.novell.com/linux/security/advisories/2003_025_samba.htmlhttp://www.redhat.com/support/errata/RHSA-2003-137.htmlftp://patches.sgi.com/support/free/security/advisories/20030403-01-Phttp://www.kb.cert.org/vuls/id/267873http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000624http://www.mandriva.com/security/advisories?name=MDKSA-2003:044http://marc.info/?l=bugtraq&m=104972664226781&w=2http://marc.info/?l=bugtraq&m=104974612519064&w=2http://marc.info/?l=bugtraq&m=104994564212488&w=2http://marc.info/?l=bugtraq&m=104981682014565&w=2https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A567https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2163https://nvd.nist.govhttps://github.com/rebekattan/Reporte-de-Resultadoshttps://www.kb.cert.org/vuls/id/267873https://www.exploit-db.com/exploits/16861/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080log injectionCVE-2024-6041CVE-2024-37661XML external entityCVE-2024-0845privilege escalationCVE-2023-37057CVE-2024-27801
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook