Unrated severityNVD Advisory· Published Sep 13, 2004· Updated Apr 16, 2026

CVE-2004-0807

Description

Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.

Affected products

Samba (software)/Samba9 versions
cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.2a:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.4:rc1:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.6:*:*:*:*:*:*:*
Sgi/Samba7 versions
cpe:2.3:a:sgi:samba:3.0:*:irix:*:*:*:*:*+ 6 more
- cpe:2.3:a:sgi:samba:3.0:*:irix:*:*:*:*:*
- cpe:2.3:a:sgi:samba:3.0.1:*:irix:*:*:*:*:*
- cpe:2.3:a:sgi:samba:3.0.2:*:irix:*:*:*:*:*
- cpe:2.3:a:sgi:samba:3.0.3:*:irix:*:*:*:*:*
- cpe:2.3:a:sgi:samba:3.0.4:*:irix:*:*:*:*:*
- cpe:2.3:a:sgi:samba:3.0.5:*:irix:*:*:*:*:*
- cpe:2.3:a:sgi:samba:3.0.6:*:irix:*:*:*:*:*
Conectiva/Linux2 versions
cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
Mandrakesoft/Mandrake Linux2 versions
cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:amd64:*:*:*:*:*
SUSE S.A./Linux7 versions
cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*+ 6 more
- cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:8.1:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:8.2:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

distro.conectiva.com.br/atualizacoes/nvdPatchVendor Advisory
www.gentoo.org/security/en/glsa/glsa-200409-16.xmlnvdPatchVendor Advisory
www.idefense.com/application/poi/displaynvdPatchVendor Advisory
www.redhat.com/support/errata/RHSA-2004-467.htmlnvdPatchVendor Advisory
www.trustix.net/errata/2004/0046/nvdPatchVendor Advisory
patches.sgi.com/support/free/security/advisories/20041201-01-Pnvd
marc.infonvd
marc.infonvd
www.mandrakesecure.net/en/advisories/advisory.phpnvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11141nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000