CVE-2012-0870

Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion.

Published: Feb 23, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-0870
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.9
AV:A/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
rim / blackberry_playbook_os	1.0	1.0.x
rim / blackberry_playbook_os	1.0.7.2942	1.0.7.2942.x
rim / blackberry_playbook_os	1.0.7.3312	1.0.7.3312.x
rim / blackberry_playbook_os	1.0.3	1.0.3.x
samba / samba	3.0.0	3.0.0.x
rim / blackberry_playbook_os	1.0.8.6067	1.0.8.6067.x
rim / blackberry_playbook_os	1.0.7	1.0.7.x
rim / blackberry_playbook_os	-	2.0.x
rim / blackberry_playbook_os	1.0.6	1.0.6.x
rim / blackberry_playbook_os	1.0.8.4985	1.0.8.4985.x
rim / blackberry_playbook_os	1.0.5	1.0.5.x

Vulnerability Database

289,697

CVE-2012-0870