Search for vulnerabilities
Vulnerability details: VCID-qbm7-bp95-4ydn
Vulnerability ID VCID-qbm7-bp95-4ydn
Aliases CVE-2007-2446
Summary
Status Published
Exploitability 2.0
Weighted Severity 0.7
Risk 1.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.7795 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.7795 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.7795 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.7795 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.78833 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.78833 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.78833 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.78833 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.78833 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.78833 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79505 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79897 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79897 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79897 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79897 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79897 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
epss 0.79897 https://api.first.org/data/v1/epss?cve=CVE-2007-2446
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2446.json
https://api.first.org/data/v1/epss?cve=CVE-2007-2446
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446
239429 https://bugzilla.redhat.com/show_bug.cgi?id=239429
CVE-2007-2446;OSVDB-34699 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/16859.rb
CVE-2007-2446;OSVDB-34699 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/9950.rb
CVE-2007-2446;OSVDB-34699 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/osx/remote/16875.rb
CVE-2007-2446;OSVDB-34699 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/remote/16329.rb
RHSA-2007:0354 https://access.redhat.com/errata/RHSA-2007:0354
USN-460-1 https://usn.ubuntu.com/460-1/
Data source Metasploit
Description This module triggers a heap overflow in the LSA RPC service of the Samba daemon. This module uses the TALLOC chunk overwrite method (credit Ramon and Adriano), which only works with Samba versions 3.0.21-3.0.24. Additionally, this module will not work when the Samba "log level" parameter is higher than "2".
Note 
Stability:
  - crash-service-restarts
Reliability:
  - repeatable-session
SideEffects:
  - ioc-in-logs
Ransomware campaign use Unknown
Source publication date May 14, 2007
Platform Solaris
Source URL https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/solaris/samba/lsa_transnames_heap.rb
Data source Exploit-DB
Date added April 5, 2010
Description Samba 3.0.24 (Solaris) - 'lsa_io_trans_names' Heap Overflow (Metasploit)
Ransomware campaign use Known
Source publication date April 5, 2010
Exploit type remote
Platform solaris
Source update date Dec. 1, 2016
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.98975
EPSS Score 0.7795
Published At Sept. 25, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:38:21.066641+00:00 Ubuntu USN Importer Import https://usn.ubuntu.com/460-1/ 37.0.0