CVE-2003-0085 : Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon

Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.

Published 2003-03-31 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Products affected by CVE-2003-0085

HP » Cifs-9000 Server » Version: A.01.05
cpe:2.3:a:hp:cifs-9000_server:a.01.05:*:*:*:*:*:*:*
Matching versions
HP » Cifs-9000 Server » Version: A.01.06
cpe:2.3:a:hp:cifs-9000_server:a.01.06:*:*:*:*:*:*:*
Matching versions
HP » Cifs-9000 Server » Version: A.01.09
cpe:2.3:a:hp:cifs-9000_server:a.01.09:*:*:*:*:*:*:*
Matching versions
HP » Cifs-9000 Server » Version: A.01.08
cpe:2.3:a:hp:cifs-9000_server:a.01.08:*:*:*:*:*:*:*
Matching versions
HP » Cifs-9000 Server » Version: A.01.08.01
cpe:2.3:a:hp:cifs-9000_server:a.01.08.01:*:*:*:*:*:*:*
Matching versions
HP » Cifs-9000 Server » Version: A.01.09.01
cpe:2.3:a:hp:cifs-9000_server:a.01.09.01:*:*:*:*:*:*:*
Matching versions
HP » Cifs-9000 Server » Version: A.01.07
cpe:2.3:a:hp:cifs-9000_server:a.01.07:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.5
cpe:2.3:a:samba:samba:2.0.5:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.4
cpe:2.3:a:samba:samba:2.0.4:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.7
cpe:2.3:a:samba:samba:2.0.7:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.9
cpe:2.3:a:samba:samba:2.0.9:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.0
cpe:2.3:a:samba:samba:2.2.0:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.8
cpe:2.3:a:samba:samba:2.0.8:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.6
cpe:2.3:a:samba:samba:2.0.6:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.4
cpe:2.3:a:samba:samba:2.2.4:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.5
cpe:2.3:a:samba:samba:2.2.5:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.6
cpe:2.3:a:samba:samba:2.2.6:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.2
cpe:2.3:a:samba:samba:2.2.2:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.3
cpe:2.3:a:samba:samba:2.2.3:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.0
cpe:2.3:a:samba:samba:2.0.0:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.1a
cpe:2.3:a:samba:samba:2.2.1a:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.3a
cpe:2.3:a:samba:samba:2.2.3a:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.1
cpe:2.3:a:samba:samba:2.0.1:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.10
cpe:2.3:a:samba:samba:2.0.10:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.2
cpe:2.3:a:samba:samba:2.0.2:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.0.3
cpe:2.3:a:samba:samba:2.0.3:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.0a
cpe:2.3:a:samba:samba:2.2.0a:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.7
cpe:2.3:a:samba:samba:2.2.7:*:*:*:*:*:*:*
Matching versions
Samba » Samba » Version: 2.2.7a
cpe:2.3:a:samba:samba:2.2.7a:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2003-0085

EPSS FAQ

86.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 99 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2003-0085

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2003-0085

http://www.gentoo.org/security/en/glsa/glsa-200303-11.xml

Gentoo Linux — Error 404 (Not Found)

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A552

404 Not Found
http://www.mandriva.com/security/advisories?name=MDKSA-2003:032

Mandriva

CVEs referencing this url
http://www.redhat.com/support/errata/RHSA-2003-095.html

Support

CVEs referencing this url
http://secunia.com/advisories/8303

About Secunia Research | Flexera

CVEs referencing this url
http://www.securityfocus.com/archive/1/316165/30/25370/threaded

CVEs referencing this url
http://www.kb.cert.org/vuls/id/298233

VU#298233 - Samba contains buffer overflow in SMB/CIFS packet fragment reassembly code
US Government Resource
http://www.securityfocus.com/archive/1/317145/30/25220/threaded
http://www.debian.org/security/2003/dsa-262

Debian -- The Universal Operating System
Patch;Vendor Advisory

CVEs referencing this url
http://marc.info/?l=bugtraq&m=104792723017768&w=2

'Security Bugfix for Samba - Samba 2.2.8 Released' - MARC
http://www.redhat.com/support/errata/RHSA-2003-096.html

Support

CVEs referencing this url
http://www.securityfocus.com/bid/7106

Patch;Vendor Advisory
http://marc.info/?l=bugtraq&m=104801012929374&w=2

'[OpenPKG-SA-2003.021] OpenPKG Security Advisory (samba)' - MARC

CVEs referencing this url
http://marc.info/?l=bugtraq&m=104792646416629&w=2

'GLSA: samba (200303-11)' - MARC

CVEs referencing this url
http://www.novell.com/linux/security/advisories/2003_016_samba.html

404 Page Not Found | SUSE

CVEs referencing this url
http://secunia.com/advisories/8299

About Secunia Research | Flexera

CVEs referencing this url
ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2003-0085

Products affected by CVE-2003-0085

Exploit prediction scoring system (EPSS) score for CVE-2003-0085

CVSS scores for CVE-2003-0085

References for CVE-2003-0085