CVE-2010-0547: Input Validation
First published: Tue Jan 26 2010(Updated: )
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/samba | <0:3.0.33-0.34.el4 | 0:3.0.33-0.34.el4 |
| redhat/samba3x | <0:3.5.4-0.70.el5 | 0:3.5.4-0.70.el5 |
| redhat/samba | <0:3.0.33-3.29.el5_7.4 | 0:3.0.33-3.29.el5_7.4 |
| Samba | <=3.4.5 | |
| Samba | =1.9.17 | |
| Samba | =1.9.17-p1 | |
| Samba | =1.9.17-p2 | |
| Samba | =1.9.17-p3 | |
| Samba | =1.9.17-p4 | |
| Samba | =1.9.17-p5 | |
| Samba | =1.9.18 | |
| Samba | =1.9.18-p1 | |
| Samba | =1.9.18-p10 | |
| Samba | =1.9.18-p2 | |
| Samba | =1.9.18-p3 | |
| Samba | =1.9.18-p4 | |
| Samba | =1.9.18-p5 | |
| Samba | =1.9.18-p6 | |
| Samba | =1.9.18-p7 | |
| Samba | =1.9.18-p8 | |
| Samba | =2.2.0 | |
| Samba | =2.2.0a | |
| Samba | =2.2.1 | |
| Samba | =2.2.1a | |
| Samba | =2.2.2 | |
| Samba | =2.2.3 | |
| Samba | =2.2.3a | |
| Samba | =2.2.4 | |
| Samba | =2.2.5 | |
| Samba | =2.2.6 | |
| Samba | =2.2.7 | |
| Samba | =2.2.7a | |
| Samba | =2.2.8 | |
| Samba | =2.2.8a | |
| Samba | =2.2.9 | |
| Samba | =2.2.10 | |
| Samba | =2.2.11 | |
| Samba | =2.2.12 | |
| Samba | =2.2a | |
| Samba | =3.0.0 | |
| Samba | =3.0.1 | |
| Samba | =3.0.2 | |
| Samba | =3.0.2a | |
| Samba | =3.0.3 | |
| Samba | =3.0.4 | |
| Samba | =3.0.4-rc1 | |
| Samba | =3.0.5 | |
| Samba | =3.0.6 | |
| Samba | =3.0.8 | |
| Samba | =3.0.9 | |
| Samba | =3.0.10 | |
| Samba | =3.0.11 | |
| Samba | =3.0.12 | |
| Samba | =3.0.13 | |
| Samba | =3.0.14 | |
| Samba | =3.0.14a | |
| Samba | =3.0.20 | |
| Samba | =3.0.20a | |
| Samba | =3.0.20b | |
| Samba | =3.0.21 | |
| Samba | =3.0.21a | |
| Samba | =3.0.21b | |
| Samba | =3.0.21c | |
| Samba | =3.0.22 | |
| Samba | =3.0.23 | |
| Samba | =3.0.23a | |
| Samba | =3.0.23b | |
| Samba | =3.0.23c | |
| Samba | =3.0.23d | |
| Samba | =3.0.24 | |
| Samba | =3.0.25 | |
| Samba | =3.0.25-pre1 | |
| Samba | =3.0.25-pre2 | |
| Samba | =3.0.25-rc1 | |
| Samba | =3.0.25-rc2 | |
| Samba | =3.0.25-rc3 | |
| Samba | =3.0.25a | |
| Samba | =3.0.25b | |
| Samba | =3.0.25c | |
| Samba | =3.0.26 | |
| Samba | =3.0.26a | |
| Samba | =3.0.27 | |
| Samba | =3.0.27a | |
| Samba | =3.0.28 | |
| Samba | =3.0.28a | |
| Samba | =3.0.29 | |
| Samba | =3.0.30 | |
| Samba | =3.0.31 | |
| Samba | =3.0.32 | |
| Samba | =3.0.33 | |
| Samba | =3.0.34 | |
| Samba | =3.0.35 | |
| Samba | =3.0.36 | |
| Samba | =3.0.37 | |
| Samba | =3.2.0 | |
| Samba | =3.2.1 | |
| Samba | =3.2.2 | |
| Samba | =3.2.3 | |
| Samba | =3.2.4 | |
| Samba | =3.2.5 | |
| Samba | =3.2.6 | |
| Samba | =3.2.7 | |
| Samba | =3.2.8 | |
| Samba | =3.2.9 | |
| Samba | =3.2.10 | |
| Samba | =3.2.11 | |
| Samba | =3.2.12 | |
| Samba | =3.2.13 | |
| Samba | =3.2.14 | |
| Samba | =3.2.15 | |
| Samba | =3.3.0 | |
| Samba | =3.3.1 | |
| Samba | =3.3.2 | |
| Samba | =3.3.3 | |
| Samba | =3.3.4 | |
| Samba | =3.3.5 | |
| Samba | =3.3.6 | |
| Samba | =3.3.7 | |
| Samba | =3.3.8 | |
| Samba | =3.3.9 | |
| Samba | =3.3.10 | |
| Samba | =3.4.0 | |
| Samba | =3.4.1 | |
| Samba | =3.4.2 | |
| Samba | =3.4.3 | |
| Samba | =3.4.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.samba.org/?p=samba.git%3Ba=commit%3Bh=a065c177dfc8f968775593ba00dffafeebb2e054
- http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
- http://secunia.com/advisories/39317
- http://security.gentoo.org/glsa/glsa-201206-29.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:090
- http://www.securityfocus.com/bid/38326
- http://www.vupen.com/english/advisories/2010/1062
- http://git.samba.org/?p=samba.git;a=commit;h=a065c177dfc8f968775593ba00dffafeebb2e054
- https://access.redhat.com/security/cve/CVE-2010-0547
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0547
- https://access.redhat.com/security/cve/CVE-2010-0787
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0787
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=532940#c26
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=532940#c25
- https://access.redhat.com/security/cve/CVE-2010-0296
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=559579
- https://access.redhat.com/security/cve/CVE-2011-2724
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=726691
- https://rhn.redhat.com/errata/RHSA-2011-1219.html
- https://bugzilla.redhat.com/show_bug.cgi?id=562156
- https://www.cve.org/CVERecord?id=CVE-2010-0547 https://nvd.nist.gov/vuln/detail/CVE-2010-0547
- https://access.redhat.com/errata/RHSA-2011:1219
- https://access.redhat.com/errata/RHBA-2011:0054
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0547.json
Frequently Asked Questions
What is the severity of CVE-2010-0547?
CVE-2010-0547 has a moderate severity rating as it can lead to denial of service through mtab corruption.
How do I fix CVE-2010-0547?
To fix CVE-2010-0547, upgrade Samba to version 3.4.6 or later.
What are the affected versions for CVE-2010-0547?
CVE-2010-0547 affects Samba versions 3.4.5 and earlier.
Can CVE-2010-0547 be exploited remotely?
CVE-2010-0547 is primarily a local vulnerability, affecting local users who can create crafted strings.
What impact does CVE-2010-0547 have on system stability?
CVE-2010-0547 may cause instability due to potential mtab file corruption resulting in a denial of service.
- agent/author
- agent/type
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-0547
- agent/first-publish-date
- agent/softwarecombine
- collector/redhat-cve
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- package-manager/redhat
- vendor/samba
- canonical/samba
- version/samba/3.4.5
- version/samba/1.9.17
- version/samba/1.9.17-p1
- version/samba/1.9.17-p2
- version/samba/1.9.17-p3
- version/samba/1.9.17-p4
- version/samba/1.9.17-p5
- version/samba/1.9.18
- version/samba/1.9.18-p1
- version/samba/1.9.18-p10
- version/samba/1.9.18-p2
- version/samba/1.9.18-p3
- version/samba/1.9.18-p4
- version/samba/1.9.18-p5
- version/samba/1.9.18-p6
- version/samba/1.9.18-p7
- version/samba/1.9.18-p8
- version/samba/2.2.0
- version/samba/2.2.0a
- version/samba/2.2.1
- version/samba/2.2.1a
- version/samba/2.2.2
- version/samba/2.2.3
- version/samba/2.2.3a
- version/samba/2.2.4
- version/samba/2.2.5
- version/samba/2.2.6
- version/samba/2.2.7
- version/samba/2.2.7a
- version/samba/2.2.8
- version/samba/2.2.8a
- version/samba/2.2.9
- version/samba/2.2.10
- version/samba/2.2.11
- version/samba/2.2.12
- version/samba/2.2a
- version/samba/3.0.0
- version/samba/3.0.1
- version/samba/3.0.2
- version/samba/3.0.2a
- version/samba/3.0.3
- version/samba/3.0.4
- version/samba/3.0.4-rc1
- version/samba/3.0.5
- version/samba/3.0.6
- version/samba/3.0.8
- version/samba/3.0.9
- version/samba/3.0.10
- version/samba/3.0.11
- version/samba/3.0.12
- version/samba/3.0.13
- version/samba/3.0.14
- version/samba/3.0.14a
- version/samba/3.0.20
- version/samba/3.0.20a
- version/samba/3.0.20b
- version/samba/3.0.21
- version/samba/3.0.21a
- version/samba/3.0.21b
- version/samba/3.0.21c
- version/samba/3.0.22
- version/samba/3.0.23
- version/samba/3.0.23a
- version/samba/3.0.23b
- version/samba/3.0.23c
- version/samba/3.0.23d
- version/samba/3.0.24
- version/samba/3.0.25
- version/samba/3.0.25-pre1
- version/samba/3.0.25-pre2
- version/samba/3.0.25-rc1
- version/samba/3.0.25-rc2
- version/samba/3.0.25-rc3
- version/samba/3.0.25a
- version/samba/3.0.25b
- version/samba/3.0.25c
- version/samba/3.0.26
- version/samba/3.0.26a
- version/samba/3.0.27
- version/samba/3.0.27a
- version/samba/3.0.28
- version/samba/3.0.28a
- version/samba/3.0.29
- version/samba/3.0.30
- version/samba/3.0.31
- version/samba/3.0.32
- version/samba/3.0.33
- version/samba/3.0.34
- version/samba/3.0.35
- version/samba/3.0.36
- version/samba/3.0.37
- version/samba/3.2.0
- version/samba/3.2.1
- version/samba/3.2.2
- version/samba/3.2.3
- version/samba/3.2.4
- version/samba/3.2.5
- version/samba/3.2.6
- version/samba/3.2.7
- version/samba/3.2.8
- version/samba/3.2.9
- version/samba/3.2.10
- version/samba/3.2.11
- version/samba/3.2.12
- version/samba/3.2.13
- version/samba/3.2.14
- version/samba/3.2.15
- version/samba/3.3.0
- version/samba/3.3.1
- version/samba/3.3.2
- version/samba/3.3.3
- version/samba/3.3.4
- version/samba/3.3.5
- version/samba/3.3.6
- version/samba/3.3.7
- version/samba/3.3.8
- version/samba/3.3.9
- version/samba/3.3.10
- version/samba/3.4.0
- version/samba/3.4.1
- version/samba/3.4.2
- version/samba/3.4.3
- version/samba/3.4.4