Lucene search
K

30 matches found

AlpineLinux
AlpineLinux
added 2026/06/08 7:34 a.m.6 views

CVE-2026-3238

A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the...

7.5CVSS5.4AI score0.02669EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-8651

Malware in sbrugna...

7.5CVSS7.6AI score0.02486EPSS
Exploits0References22
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-7986

Malware in sbrugna...

8.5CVSS7.4AI score0.04264EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5959

Malware in sbrugna...

5.4CVSS5.3AI score0.02084EPSS
Exploits0References14
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.150 views

AD CS Certificate Template Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AD CS Certificate Template Management', 'Description' = %q This module can create, read, update, and delete AD CS certificate templates from a...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/10 12:0 a.m.58 views

Amazon Linux 2022 : samba (ALAS2022-2022-224)

The version of samba installed on the remote host is prior to 4.16.2-0. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-224 advisory. - A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the...

9CVSS7.3AI score0.74042EPSS
Exploits1References25
Samba
Samba
added 2022/10/25 12:0 a.m.59 views

Buffer overflow in Heimdal unwrap_des3()

Description The DES for Samba 4.11 and earlier and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a maliciously small packet. Examples of where Samba can use GSSAPI include the client and...

6.5CVSS0.0369EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.15 views

Slackware: Security Advisory (SSA:2015-020-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.6AI score0.04264EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/01/06 1:15 a.m.3 views

CVE-2020-36160

An issue was discovered in Veritas System Recovery before 21.2. On start-up, it loads the OpenSSL library from \usr\local\ssl. This library attempts to load the from \usr\local\ssl\openssl.cnf configuration file, which does not exist. By default, on Windows systems, users can create directories...

9.3CVSS6.3AI score0.00431EPSS
Exploits0References2
Prion
Prion
added 2021/01/06 1:15 a.m.26 views

Design/Logic Flaw

An issue was discovered in the server in Veritas Backup Exec through 16.2, 20.6 before hotfix 298543, and 21.1 before hotfix 657517. On start-up, it loads the OpenSSL library from the Installation folder. This library in turn attempts to load the /usr/local/ssl/openssl.cnf configuration file, whi...

7.2CVSS8.7AI score0.00462EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/01/06 12:53 a.m.18 views

CVE-2020-36160

An issue was discovered in Veritas System Recovery before 21.2. On start-up, it loads the OpenSSL library from \usr\local\ssl. This library attempts to load the from \usr\local\ssl\openssl.cnf configuration file, which does not exist. By default, on Windows systems, users can create directories...

9.3CVSS9.2AI score0.00431EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.44 views

EulerOS Virtualization for ARM 64 3.0.6.0 : samba (EulerOS-SA-2020-2012)

According to the version of the samba packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests ...

7.5CVSS7.8AI score0.03455EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/28 12:0 a.m.30 views

EulerOS 2.0 SP8 : samba (EulerOS-SA-2020-1882)

According to the version of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory...

7.5CVSS8AI score0.03455EPSS
Exploits0References2
OSV
OSV
added 2020/08/10 7:10 p.m.7 views

USN-4454-2 samba vulnerability

USN-4454-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: Martin von Wittich and Wilko Meyer discovered that Samba incorrectly handled certain empty UDP packets when being used as a AD DC NBT...

7.5CVSS7.2AI score0.03539EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/10/29 12:0 a.m.26 views

CVE-2019-14833

A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. The Samba Active Directory Domain Controller can be configured to use a custom script to check for passwo...

5.4CVSS6.3AI score0.02084EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/07/25 12:0 a.m.29 views

EulerOS 2.0 SP8 : samba (EulerOS-SA-2019-1780)

According to the version of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A double-free was found when Samba's KDC is used as an Active Directory Domain Controller. An authenticated attacker could use this flaw to cause a...

6.5CVSS6.8AI score0.04586EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/11/28 3:19 a.m.33 views

CVE-2018-16851

A null pointer dereference was found in the way LDAP search was implemented when Samba is used as Active Directory Domain Controller. A remote, authenticated attacker could use this flaw to cause a denial of service application crash...

6.5CVSS2.6AI score0.03251EPSS
Exploits0References2
OSV
OSV
added 2018/08/22 2:29 p.m.26 views

CVE-2018-1140

A missing input sanitization flaw was found in the implementation of LDP database used for the LDAP server. An attacker could use this flaw to cause a denial of service against a samba server, used as a Active Directory Domain Controller. All versions of Samba from 4.8.0 onwards are vulnerable...

6.5CVSS6.4AI score0.10839EPSS
Exploits0References6
CVE
CVE
added 2018/08/22 2:0 p.m.132 views

CVE-2018-1140

CVE-2018-1140 describes a null pointer dereference in Samba when operating as an Active Directory Domain Controller, caused by insufficient validation of DNS requests. The vulnerability allows a remote attacker to crash the Samba AD DC, yielding a Denial of Service. Affected software: Samba (AD D...

6.5CVSS6.5AI score0.10839EPSS
Exploits0References6Affected Software1
AlpineLinux
AlpineLinux
added 2018/08/22 2:0 p.m.43 views

CVE-2018-1140

A missing input sanitization flaw was found in the implementation of LDP database used for the LDAP server. An attacker could use this flaw to cause a denial of service against a samba server, used as a Active Directory Domain Controller. All versions of Samba from 4.8.0 onwards are vulnerable...

6.5CVSS6.8AI score0.10839EPSS
Exploits0
Rows per page
Query Builder