CVE-2006-3403
samba - missing input sanitising
EPSS 29.8%
Description
The smdb daemon (smbd/service.c) in Samba 3.0.1 through 3.0.22 allows remote attackers to cause a denial of service (memory consumption) via a large number of share connection requests.
How to fix CVE-2006-3403
To remediate CVE-2006-3403, upgrade the affected package to a fixed version below.
- Debian/samba—upgrade to 3.0.23a-1 or later
- Debian/samba—upgrade to 3.0.14a-3sarge2 or later
Is CVE-2006-3403 being exploited?
Moderate — EPSS is 29.8%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 3.0.23a-1
- from 0, < 3.0.14a-3sarge2