Samba has released an update to address a vulnerability in Samba versions 3.6.3 and all previous versions. Exploitation of this vulnerability may allow a remote attacker to use anonymous connections to execute arbitrary code with root privileges.

US-CERT encourages users and administrators to review the recent Samba Security Announcement and apply any necessary updates to help mitigate the risk.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we’d welcome your feedback.

References

www.samba.org/samba/security/CVE-2012-1182

nessus 30

openvas 43

fedora 3

canvas 2

prion 1

altlinux 2

ubuntu 1

centos 4

debiancve 1

zdi 9

redhat 5

samba 1

securityvulns 3

seebug 1

oraclelinux 5

packetstorm 2

f5 2

thn 1

suse 5

cve 1

freebsd 1

checkpoint_advisories 2

veracode 1

ubuntucve 1

debian 2

ibm 1

nmap 69

nessus

Oracle Linux 4 : samba (ELSA-2012-0478)

2013-07-12 00:00:00

CentOS 6 : samba4 (CESA-2013:0506)

2013-03-10 00:00:00

Scientific Linux Security Update : samba3x on SL5.x i386/x86_64 (20120410)

2012-08-01 00:00:00

openvas

CentOS Update for libsmbclient CESA-2012:0465 centos6

2012-07-30 00:00:00

Mandriva Update for samba MDVSA-2012:055 (samba)

2012-08-03 00:00:00

Fedora Update for samba4 FEDORA-2012-6382

2012-05-17 00:00:00

fedora

[SECURITY] Fedora 16 Update: samba4-4.0.0-38.alpha16.fc16

2012-05-15 23:28:34

[SECURITY] Fedora 15 Update: samba4-4.0.0-26.alpha11.fc15.6

2012-05-03 07:32:37

[SECURITY] Fedora 17 Update: samba-3.6.4-82.fc17.1

2012-04-18 23:09:23

canvas

Immunity Canvas: CVE_2012_1182

2012-04-10 21:55:00

Immunity Canvas: CVE_2012_1182_NONX

2012-04-10 17:55:02

prion

Input validation

2012-04-10 21:55:00

altlinux

Security fix for the ALT Linux 6 package samba version 3.5.14-alt1.M60P.1

2012-04-11 00:00:00

Security fix for the ALT Linux 5 package samba version 3.0.37-alt5.M50P.1

2012-04-11 00:00:00

ubuntu

Samba vulnerability

2012-04-13 00:00:00

centos

evolution, openchange security update

2013-02-27 19:34:43

samba3x security update

2012-04-10 21:13:02

libsmbclient, samba security update

2012-04-10 21:30:27

debiancve

CVE-2012-1182

2012-04-10 21:55:00

zdi

Samba NDR PULL DFS EnumArray1 Heap Overflow Remote Code Execution Vulnerability

2012-04-18 00:00:00

Samba NDR PULL SVCCTL StartServiceW Heap Overflow Remote Code Execution Vulnerability

2012-04-18 00:00:00

Samba ReportEventW Heap Overflow Remote Code Execution Vulnerability

2012-04-18 00:00:00

redhat

(RHSA-2012:0466) Critical: samba3x security update

2012-04-10 00:00:00

(RHSA-2012:0478) Critical: samba security update

2012-04-13 00:00:00

(RHSA-2013:0506) Moderate: samba4 security, bug fix and enhancement update

2013-02-21 00:00:00

samba

"root" credential remote code execution.

2012-04-10 00:00:00

securityvulns

HP Server Automation code execution

2012-06-17 00:00:00

Samba array index overflow

2012-04-19 00:00:00

[security bulletin] HPSBMU02790 SSRT100872 rev.1 - HP Server Automation, Remote Execution of Arbitrary Code

2012-06-17 00:00:00

seebug

Samba < 3.6.3 版本ndr_pull_lsa_SidArray堆溢出漏洞(CVE-2012-1182)

2012-04-12 00:00:00

oraclelinux

samba security update

2012-04-10 00:00:00

samba security update

2012-04-16 00:00:00

openchange security, bug fix and enhancement update

2013-02-27 00:00:00

packetstorm

Samba SetInformationPolicy AuditEventsInfo Heap Overflow

2012-09-28 00:00:00

Samba 3.x Remote Root

2012-09-25 00:00:00

SOL13719 - Samba vulnerability CVE-2012-1182

2012-07-10 00:00:00

K13719 : Samba vulnerability CVE-2012-1182

2013-08-29 00:00:00

thn

Samba remote code execution vulnerability, Patch Released !

2012-04-12 12:10:00

suse

Security update for Samba (critical)

2012-04-14 10:08:19

Security update for Samba (critical)

2012-04-14 10:08:18

update for samba (critical)

2012-04-16 16:08:12

cve

CVE-2012-1182

2012-04-10 21:55:00

freebsd

samba -- "root" credential remote code execution

2012-04-10 00:00:00

checkpoint_advisories

Samba SetInformationPolicy AuditEventsInfo Heap Overflow (CVE-2012-1182)

2013-07-28 00:00:00

Samba DCE RPC IDL Parser Out-of-bounds Array Access (CVE-2012-1182)

2012-10-14 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 08:57:16

ubuntucve

CVE-2012-1182

2012-04-10 00:00:00

debian

[BSA-070] Security Update for samba

2012-04-14 08:51:02

[SECURITY] [DSA 2450-1] samba security update

2012-04-12 20:29:01

ibm

Security Bulletin: SONAS Fix Available for Samba Remote Code Execution Vulnerability (CVE-2012-1182)

2022-09-26 04:23:14

nmap

riak-http-info NSE Script

2012-01-02 11:37:38

cics-enum NSE Script

2016-12-08 21:27:09

qscan NSE Script

2010-03-21 20:05:31

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Related for CISA:C73BC9C5DAF991808EA4A267072DA584