CVE-2007-0453
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-0453
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 through 3.0.23d, as used in the winbindd daemon on Solaris, allows attackers to execute arbitrary code via the (1) gethostbyname and (2) getipnodebyname functions.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Samba NSS主机查询Winbind多个远程缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Samba是Samba团队开发的一套可使UNIX系列的操作系统与微软Windows操作系统的SMB/CIFS网络协议做连结的自由软件。该软件支持共享打印机、互相传输资料文件等。 Sun Solaris的nss_winbind.so.1库实现上存在漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果Sun Solaris系统运行Samba的winbindd守护程序且配置为使用nss_winbind.so.1库进行gethostbyname()和getipnodebyname()名称解析查询的话,如:
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-0453
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-0453
请登录查看更多情报信息。
- http://us1.samba.org/samba/security/CVE-2007-0453.htmlx_refsource_CONFIRM
- https://issues.rpath.com/browse/RPL-1005x_refsource_CONFIRM
- http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.476916vendor-advisoryx_refsource_SLACKWARE
- http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.012.htmlvendor-advisoryx_refsource_OPENPKG
- https://nvd.nist.gov/vuln/detail/CVE-2007-0453
Same Patch Batch · n/a · 2007-02-06 · 38 CVEs total
| CVE-2007-0763 | F3Site Index.PHP HTML注入漏洞 | |
| CVE-2007-0452 | Samba延迟CIFS文件打开拒绝服务漏洞 | |
| CVE-2007-0454 | Samba服务器VFS插件afsacl.so远程格式串处理漏洞 | |
| CVE-2007-0756 | Chicken VNC 远程拒绝服务漏洞 | |
| CVE-2007-0757 | DreamStats System Rootpath 'index.php' PHP远程文件包含漏洞 | |
| CVE-2007-0758 | PHPProbid 'lang.php' 远程文件包含漏洞 | |
| CVE-2007-0759 | EasyMoblog 多个SQL注入漏洞 | |
| CVE-2007-0760 | EQDKP Backup.PHP 权限绕过漏洞 | |
| CVE-2007-0761 | phpBB ezBoard converter 'config.php'PHP远程文件包含漏洞 | |
| CVE-2007-0762 | phpBB++ PHPBB_Root_Path 'includes/functions.php'PHP远程文件包含漏洞 | |
| CVE-2006-6968 | Phorum 群体适度控制中心页跨站脚本攻击漏洞 | |
| CVE-2007-0764 | F3Site 任意文件上传漏洞 | |
| CVE-2007-0765 | Curium CMS News.PHP SQL注入漏洞 | |
| CVE-2007-0766 | Remotesoft .NET Explorer 栈缓冲区溢出漏洞 | |
| CVE-2007-0767 | Phorum 内核跨站脚本攻击漏洞 | |
| CVE-2007-0768 | Yahoo! Messenger Notification Message HTML注入漏洞 | |
| CVE-2007-0769 | Phorum Register.PHP HTML注入漏洞 | |
| CVE-2007-0555 | PostgreSQL 安全漏洞 | |
| CVE-2007-0556 | PostgreSQL query planner拒绝服务漏洞 | |
| CVE-2007-0792 | Mozilla Bugzilla HTML mod_perl注入及信息泄露漏洞 |
Showing top 20 of 38 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2007-0453
No comments yet