Info

Disclosure

Jan 05, 2009

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Confidentiality
Solution: Patch / RCS, Upgrade
Disclosure: Vendor Verified

Solution

Upgrade to version 3.2.7 or higher, as it has been reported to fix this vulnerability. In addition, vendors have released patches for some older versions.

Products

Unknown or Incomplete

References

CVE ID: 2009-0022 (see also: NVD)
Secunia Advisory ID: 33379 33392 33431 33462
Vendor Specific News/Changelog Entry: http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00002.html
http://www.samba.org/samba/security/CVE-2009-0022.html
https://lists.ubuntu.com/archives/ubuntu-security-announce/2009-January/000818.html
https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00309.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/51152