Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2003-0201 PoC — Samba服务器call_trans2open远程缓冲区溢出漏洞

Source
https://github.com/KernelPan1k/trans2open-CVE-2003-0201
Associated Vulnerability
Title:Samba服务器call_trans2open远程缓冲区溢出漏洞 (CVE-2003-0201)
Description:Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
Description
Samba exploit CVE2003-0201
Readme
Samba versions 2.2.0 to 2.2.8
==============================

This exploits the buffer overflow found in Samba versions
2.2.0 to 2.2.8. This particular module is capable of
exploiting the flaw on x86 Linux systems that do not
have the noexec stack option set.
NOTE: Some older versions of RedHat do not seem to be vulnerable
since they apparently do not allow anonymous access to IPC.

CVE
===

- CVE-2003-0201
- OSVDB-4469
- BID-7294

Compile
=======

gcc trans2open.c -o trans2open

Metasploit
==========

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/samba/trans2open.rb
File Snapshot

 [4.0K]  /data/pocs/20b581b0f51765d60c4316d3906869c06b0ee1c3
├── [ 611]  README.md
└── [ 22K]  trans2open.c

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →