Design/Logic Flaw

A vulnerability in the interaction between the Server Message Block SMB protocol preprocessor and the Snort 3 detection engine for Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service DoS conditi...

SUSE CVE-2011-1140

Multiple stack consumption vulnerabilities in the dissectmscompressedstring and dissectmscldapstring functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service infinite recursion via a crafted 1 SMB or 2 Connection-less LDAP CLD...

Apple macOS SMB server signature verification information disclosure vulnerability

Summary An information disclosure vulnerability exists in the SMB Server Apple macOS 11.1. A specially crafted SMB packet can trigger an integer overflow, leading to information disclosure, cryptographic check bypass and denial of service. This vulnerability can be triggered by sending a maliciou...

Zerologon is now detected by Microsoft Defender for Identity

There has been a huge focus on the recently patched CVE-2020-1472 Netlogon Elevation of Privilege vulnerability, widely known as ZeroLogon. While Microsoft strongly recommends that you deploy the latest security updates to your servers and devices, we also want to provide you with the best...

Arbitrary Code Execution

samba is vulnerable to arbitrary code execution. The vulnerability exist as an input validation flaw was found in the way Samba handled Any Batched AndX requests. A remote, unauthenticated attacker could send a specially-crafted SMB packet to the Samba server, possibly resulting in arbitrary code...

Microsoft Windows: Microsoft network server: Digitally sign communications (if client agrees)

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winnssigncommunicationpossible.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for Microsoft network server: Digitally sign communications if client agrees Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone...

Microsoft Windows Hyper-V Remote Code Execution Vulnerability (CNVD-2018-10730)

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation USA.Windows Hyper-V is one of the virtualization products that supports the creation of virtual machines in Windows. A remote code execution vulnerability exists in Microsoft Windows Hyper-V that...

smb-vuln-ms10-054 NSE Script

Tests whether target machines are vulnerable to the ms10-054 SMB remote memory corruption vulnerability. The vulnerable machine will crash with BSOD. The script requires at least READ access right to a share on a remote machine. Either with guest credentials or with specified username/password...

samba security update

CentOS Errata and Security Advisory CESA-2012:0332 Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 4 and 5, and Red Hat Enterprise Linux 5.3 Long Life, and 5.6 Extended Update Support. The Red Hat Security Response Team has rated this update as...

CVE-2011-1140

Multiple stack consumption vulnerabilities in the dissectmscompressedstring and dissectmscldapstring functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service infinite recursion via a crafted 1 SMB or 2 Connection-less LDAP CLD...

CVE-2010-2550

The SMB Server in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate fields in an SMB request, which allows remote attackers to execute arbitrary code via a crafted SMB packet, aka...

Buffer overflow

The SMB Server in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate fields in an SMB request, which allows remote attackers to execute arbitrary code via a crafted SMB packet, aka...

Critical: Red Hat Security Advisory: samba and samba3x security update

Updated samba and samba3x packages that fix one security issue are now available for Red Hat Enterprise Linux 3, 4, and 5, and Red Hat Enterprise Linux 4.7, 5.3, and 5.4 Extended Update Support. The Red Hat Security Response Team has rated this update as having critical security impact. A Common...

PT-2008-5415 · Microsoft · Srv.Sys +2

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 Description: A denial of service issue exists due to insufficient validation of buffer sizes in the Server service, allowing...

FreeBSD Ports: ethereal, ethereal-lite, tethereal, tethereal-lite

The remote host is missing an update to the system as announced in the referenced advisory. VID efa1344b-5477-11d9-a9e7-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Stack overflow

Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv96, when the -o option is omitted, allow remote attackers to execute arbitrary code via a crafted SMB packet...

CVE-2008-0965

Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet...

Format string

Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet...

CVE-2008-0964

The CVE-2008-0964 issue affects SunOS/Solaris snoop for several Solaris releases. The root cause is a stack-based buffer overflow in snoop when handling SMB traffic with the -o option omitted, enabling remote code execution. Concrete fixes are available via Solaris patch updates: 108964-11 (Solar...

CVE-2008-0965

CVE-2008-0965 describes multiple format-string vulnerabilities in Solaris snoop in SunOS/Solaris 8–10 (OpenSolaris before snv_96). The connected Nessus/OpenVAS data identify affected components as snoop in SunOS/Solaris and reference specific patches: 138083-01 (Solaris 10 SPARC) and 138084-01 (S...