Red Hat Customer Portal

Skip to main content

CVE-2007-5398

Impact:
Critical
Public Date:
2007-11-15
Bugzilla:
358831: CVE-2007-5398 Samba "reply_netbios_packet()" Buffer Overflow Vulnerability

The MITRE CVE dictionary describes this issue as:

Stack-based buffer overflow in the reply_netbios_packet function in nmbd/nmbd_packets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request.

Find out more about CVE-2007-5398 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (samba) RHSA-2007:1013 2007-11-15
Red Hat Enterprise Linux 5 (samba) RHSA-2007:1017 2007-11-15
Red Hat Enterprise Linux Extended Update Support 4.5 (samba) RHSA-2007:1034 2007-11-15
Red Hat Enterprise Linux 4 (samba) RHSA-2007:1016 2007-11-15
Red Hat Enterprise Linux 3 (samba) RHSA-2007:1013 2007-11-15

Acknowledgements

Red Hat would like to thank Alin Rad Pop of Secunia Research for responsibly disclosing this issue.

Last Modified