Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2003-0201

EPSS 83.96% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2003-0201

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Samba服务器call_trans2open远程缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Samba是一套实现SMB(Server Messages Block)协议,跨平台进行文件共享和打印共享服务的程序。Samba-TNG是一款Samba的衍生版本。 Samba程序由于对外部输入缺少正确的边界缓冲区检查,远程攻击者可以利用这个漏洞以root用户权限在系统上执行任意指令。 问题是smbd/trans2.c文件中的call_trans2open()函数调用: StrnCpy(fname,pname,namelen); /* Line 252 of smbd/trans2.c */ StrnCp
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2003-0201

#POC DescriptionSource LinkShenlong Link
1Samba exploit CVE2003-0201https://github.com/KernelPan1k/trans2open-CVE-2003-0201POC Details
2Exploitation report of the Samba Trans2Open vulnerability (CVE-2003-0201), including tools used, exploitation steps, and protection techniques to secure systems.https://github.com/Bakr-Ht/samba-trans2open-exploit-reportPOC Details
3Technical audit of Kioptrix Level 1. Focus: Samba 2.2.1a exploitation (CVE-2003-0201), manual enumeration, and internal infrastructure hardening.https://github.com/deepakkcybersec-eng/Kioptrix-Level1-Vulnerability-AnalysisPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2003-0201

Please Login to view more intelligence information

Same Patch Batch · n/a · 2003-04-15 · 13 CVEs total

CVE-2003-0110Microsoft Winsock代理服务远程拒绝服务攻击漏洞(MS03-012)
CVE-2003-0111Microsoft Java虚拟机任意代码执行漏洞(MS03-011)
CVE-2003-0133GTKHTML Malformed HTML文件服务拒绝漏洞
CVE-2003-0136LPRng PSBanner以不安全方式建立临时文件漏洞
CVE-2003-0163Gaim-Encryption远程堆破坏漏洞
CVE-2003-0171Apple MacOS X DirectoryService权限提升漏洞
CVE-2003-0173SGI XFSDump Quotas文件符号链接漏洞
CVE-2003-0196Samba多个未明远程缓冲区溢出漏洞
CVE-2003-0198Apple MacOS X DropBox文件夹远程信息泄露漏洞
CVE-2003-0204KDE Postscript/PDF文件处理任意命令执行漏洞
CVE-2003-0207ps2epsi创建不安全临时文件漏洞
CVE-2003-0208Macromedia Flash ad用户跟踪性能跨站脚本(XSS)漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2003-0201

No comments yet

Leave a comment