1815 matches found
security flaw
Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\" sequences, a similar vulnerability to CVE-2006-1863...
security flaw
Multiple unspecified vulnerabilities in Ethereal 0.8.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via the 1 Sniffer capture or 2 SMB PIPE dissector...
security flaw
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service crash via unknown vectors in 1 the IrDA dissector and 2 the SMB dissector when SMB transaction payload reassembly is enabled...
security flaw
Unknown vulnerability in the SMB dissector in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a buffer overflow or a denial of service memory consumption via unknown attack vectors...
CVE-2005-1206
Buffer overflow in the Server Message Block SMB functionality for Microsoft Windows 2000, XP SP1 and SP2, and Server 2003 and SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka the "Server Message Block Vulnerability."...
Microsoft Server Message Block vulnerable to buffer overflow
Overview Microsoft Server Message Block SMB is vulnerable to a buffer handling flaw when processing incoming SMB packets that may lead to remote code execution. Description Server Message Block is a protocol which allows sharing of files, printers, serial ports, and other abstractions. The SMB...
CVE-2005-0045
The Server Message Block SMB implementation for Windows NT 4.0, 2000, XP, and Server 2003 does not properly validate certain SMB packets, which allows remote attackers to execute arbitrary code via Transaction responses containing 1 Trans or 2 Trans2 commands, aka the "Server Message Block...
OpenPGP/GnuPG chosen ciphertext cryptography attack
With CFB mode encryption attacker can recover part of the plaintext if 2 first bytes of the message block are known...
CVE-2005-0045
The Server Message Block SMB implementation for Windows NT 4.0, 2000, XP, and Server 2003 does not properly validate certain SMB packets, which allows remote attackers to execute arbitrary code via Transaction responses containing 1 Trans or 2 Trans2 commands, aka the "Server Message Block...
MS05-011: Vulnerability in SMB may allow remote code execution (885250)
The remote version of Windows contains a flaw in the Server Message Block SMB implementation that could allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to send malformed responses to the remote SMB client, and would be able to either...
security flaw
Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service CPU consumption via a certain malformed SMB packet...
CVE-2002-1256
CVE-2002-1256 describes a flaw in SMB signing in Windows 2000/XP that lets an attacker disable SMB signing in a session and inject unsigned data, potentially modifying group policy information sent from a domain controller. Affected products are Microsoft Windows 2000 and Windows XP; the root cau...
security flaw
The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service process crash via a handle without a policy name, which causes a null dereference...
PT-2004-1726 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.15 through 0.10.4 Description: The issue allows remote attackers to cause a denial of service, resulting in a process crash, by exploiting the SMB SID snooping capability via a handle without a policy name, leading to a...
security flaw
The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets...
PT-2003-2006 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal versions prior to 0.10.0 Description: The issue allows remote attackers to cause a denial of service via a malformed SMB packet. This occurs when the SMB dissector triggers a segmentation fault during the processing of Selected...
security flaw
SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL pointer...
Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetShareEnum transaction
Overview Microsoft Server Message Block SMB is a protocol for sharing data and resources between computers. SMB may crash upon receipt of a crafted SMBCOMTRANSACTION packet requesting a NetShareEnum transaction. Attackers can use this vulnerability to cause a denial of service. SMB is included in...
Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum3 transaction
Overview Microsoft Server Message Block SMB may crash upon receipt of a crafted SMBCOMTRANSACTION packet requesting a NetServerEnum3 transaction. Attackers can use this vulnerability to cause a denial of service. Description SMB is a protocol for sharing data and resources between computers,...
Microsoft Windows XP2000NT 4.0 - Network Share Provider SMB Request Buffer Overflow (2)
Microsoft Windows XP2000NT 4.0 - Network Share Provider SMB Request Buffer Overflow 2 source: https://www.securityfocus.com/bid/5556/info Microsoft Windows operating systems use the Server Message Block SMB protocol to support services such as file and printer sharing. A buffer overflow...