Red Hat Bugzilla – Bug 132207
CAN-2004-0807/8 Samba 3 DoS
Last modified: 2014-08-31 19:26:33 EDT
Summary: (i) A DoS bug in smbd may allow an
unauthenticated user to cause smbd to
spawn new processes each one entering
an infinite loop. After sending a sufficient
amount of packets it is possible to exhaust
the memory resources on the server.
(ii) A DoS bug in nmbd may allow an attacker
to remotely crash the nmbd daemon.
Versions: Defect (i) affects Samba 3.0.x prior to and
Defect (ii) affects Samba 3.0.x prior to
and including v3.0.6.
This issue is embargoed until 2004-09-13.
Samba 3.0.7 is out, this issue is public.
This is going to be RHSA-2004-467.
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.