Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2007-2444

Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to the root user.

  • Published: May 14, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-2444
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
samba / samba 3.0.25-pre2 3.0.25-pre2.x
samba / samba 3.0.24 3.0.24.x
samba / samba 3.0.23d 3.0.23d.x
debian / debian_linux 5.0 5.0.x
debian / debian_linux 4.0 4.0.x
canonical / ubuntu_linux 7.04 7.04.x
canonical / ubuntu_linux 6.10 6.10.x
canonical / ubuntu_linux 6.06 6.06.x