FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Samba 3.0.x password initialization bug

Affected packages
3.0,1 <= samba < 3.0.1_2,1

Details

VuXML ID 3388eff9-5d6e-11d8-80e3-0020ed76ef5a
Discovery 2004-02-09
Entry 2004-02-12

From the Samba 3.0.2 release notes:

Security Announcement: It has been confirmed that previous versions of Samba 3.0 are susceptible to a password initialization bug that could grant an attacker unauthorized access to a user account created by the mksmbpasswd.sh shell script.

References

CVE Name CVE-2004-0082
URL http://www.samba.org/samba/whatsnew/samba-3.0.2.html