Red Hat Bugzilla – Bug 200588
CVE-2006-3403 Samba Internal Data Structures Denial of Service
Last modified: 2007-04-18 13:46:35 EDT
06.28.24 CVE: CVE-2006-3403
Platform: Cross Platform
Title: Samba Internal Data Structures Denial of Service
Description: Samba is freely available file and printer sharing
software. It is exposed to a denial of service issue due to design of
internal data structures. The problem occurs when a large number of
share connection requests are sent by an attacker. This can result in
excessive memory consumption and an eventual crash of the application.
Samba versions 3.0.1 through 3.0.22 are affected.
This bug should be closed, as this bug was for Fedora Core 3, which is no longer
supported: Fedora Legacy is a closed project. This CVE-2006-3403 was fixed
both in FC4 and FC5, and should not have been an issue in FC6's Samba, since
FC6 was released in October of 2006. This bug was also fixed in RHEL (see