Lucene search
+L

616 matches found

OSV
OSV
added 2007/11/16 6:46 p.m.4 views

DEBIAN-CVE-2007-4572

Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests...

9.3CVSS9.4AI score0.05888EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2007/11/16 12:0 a.m.40 views

Samba < 3.0.27 Multiple Vulnerabilities

According to its banner, the version of the Samba server on the remote host contains a boundary error in the 'replynetbiospacket' function in 'nmbd/nmbdpackets.c' when sending NetBIOS replies. Provided the server is configured to run as a WINS server, a remote attacker can exploit this issue by...

9.3CVSS9.1AI score0.1125EPSS
Exploits2References8
securityvulns
securityvulns
added 2007/11/16 12:0 a.m.74 views

[SAMBA] CVE-2007-4572 - GETDC mailslot processing buffer overrun in nmbd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Stack buffer overflow in nmbd's logon == request processing. == == CVE ID: CVE-2007-4572 == == Versions: Samba 3.0.0 - 3.0.26a inclusive == == Summary: Processing of specially...

9.3CVSS0.3AI score0.05888EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2007/11/15 4:29 p.m.5 views

samba buffer overflow

Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests...

9.3CVSS7.6AI score0.05888EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/11/15 4:25 p.m.11 views

samba buffer overflow

Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server requests...

9.3CVSS7.6AI score0.05888EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2007/11/15 12:0 a.m.17 views

Samba < 3.0.27 Multiple Vulnerabilities

Binary data 4285.prm...

9.3CVSS7.3AI score0.1125EPSS
Exploits2References9
FreeBSD
FreeBSD
added 2007/11/15 12:0 a.m.50 views

samba -- multiple vulnerabilities

The Samba Team reports: Secunia Research reported a vulnerability that allows for the execution of arbitrary code in nmbd. This defect may only be exploited when the "wins support" parameter has been enabled in smb.conf. Samba developers have discovered what is believed to be a non-exploitable...

9.3CVSS7.2AI score0.1125EPSS
Exploits2References3
myhack58
myhack58
added 2007/01/10 12:0 a.m.27 views

Can not log on locally to the system of the Telnet solution-vulnerability warning-the black bar safety net

In Windows 2 0 0 0 environment, is Group Policy to deny logon locally has been relatively headache thing. This article will introduce one to all users denied to log on locally after the solve method. In Windows2000, if a user is to cancel the log on locally permission, when the user locally logs ...

6.8AI score
Exploits0
Saint
Saint
added 2006/11/27 12:0 a.m.46 views

Windows Workstation service NetpManageIPCConnect buffer overflow

Added: 11/27/2006 CVE: CVE-2006-4691 BID: 20985 OSVDB: 30263 Background The Windows Workstation service routes network requests for file or printer resources. Problem A buffer overflow in the NetpManageIPCConnect function in the Windows Workstation service allows command execution when a domain...

10CVSS7AI score0.80214EPSS
Exploits8
Saint
Saint
added 2006/11/27 12:0 a.m.34 views

Windows Workstation service NetpManageIPCConnect buffer overflow

Added: 11/27/2006 CVE: CVE-2006-4691 BID: 20985 OSVDB: 30263 Background The Windows Workstation service routes network requests for file or printer resources. Problem A buffer overflow in the NetpManageIPCConnect function in the Windows Workstation service allows command execution when a domain...

10CVSS6.8AI score0.80214EPSS
Exploits8
Saint
Saint
added 2006/11/27 12:0 a.m.70 views

Windows Workstation service NetpManageIPCConnect buffer overflow

Added: 11/27/2006 CVE: CVE-2006-4691 BID: 20985 OSVDB: 30263 Background The Windows Workstation service routes network requests for file or printer resources. Problem A buffer overflow in the NetpManageIPCConnect function in the Windows Workstation service allows command execution when a domain...

10CVSS6.8AI score0.80214EPSS
Exploits8
exploitpack
exploitpack
added 2006/11/18 12:0 a.m.8 views

Microsoft Windows - NetpManageIPCConnect Remote Stack Overflow (MS06-070) (Python)

Microsoft Windows - NetpManageIPCConnect Remote Stack Overflow MS06-070 Python !/usr/bin/python MS06-070 Windows WorkStation NetpManageIPCConnect Vulnerability Exploit Tested on windows 2000 server SP4 Usage: python NetAPI-NetrJoinDomain2.py Requires a domain controller on the network configure...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2006/11/18 12:0 a.m.41 views

Microsoft Windows - &#039;NetpManageIPCConnect&#039; Remote Stack Overflow (MS06-070)

!/usr/bin/python MS06-070 Windows WorkStation NetpManageIPCConnect Vulnerability Exploit Tested on windows 2000 server SP4 Usage: python NetAPI-NetrJoinDomain2.py Requires a domain controller on the network configure samba as DC Requires python and impacket Winny M Thomas ;- from impacket.dcerpc...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/05/13 12:0 a.m.18 views

FreeBSD : samba -- Exposure of machine account credentials in winbind log files (92fd40eb-c458-11da-9c79-00123ffe8333)

Samba Security Advisory : The machine trust account password is the secret shared between a domain controller and a specific member server. Access to the member server machine credentials allows an attacker to impersonate the server in the domain and gain access to additional information regardin...

1.2CVSS8.2AI score0.00463EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.40 views

Flaw in SMB Signing Could Enable Group Policy to be Modified (329170)

The SMB signing capability in the Server Message Block protocol in Microsoft Windows 2000 and Windows XP allows attackers to disable the digital signing settings in an SMB session to force the data to be sent unsigned, then inject data into the session without detection, e.g. by modifying group...

5CVSS6.2AI score0.05385EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.18 views

Flaw in SMB Signing Could Enable Group Policy to be Modified (329170)

The SMB signing capability in the Server Message Block protocol in Microsoft Windows 2000 and Windows XP allows attackers to disable the digital signing settings in an SMB session to force the data to be sent unsigned, then inject data into the session without detection, e.g. by modifying group...

5CVSS6.3AI score0.05385EPSS
Exploits0References2
NVD
NVD
added 2005/10/06 10:2 a.m.18 views

CVE-2005-3173

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions...

4.6CVSS6.5AI score0.01297EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/10/06 4:0 a.m.28 views

CVE-2005-3173

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions...

6.5AI score0.01297EPSS
Exploits0References2
CERT
CERT
added 2005/08/10 12:0 a.m.30 views

Microsoft Windows domain controller denial of service in Kerberos message handling

Overview Microsoft Windows domain controllers do not properly handle some Kerberos messages, potentially allowing a remote, authenticated attacker to cause a denial-of-service condition. Description Microsoft Windows domain controllers running Windows 2000 Server and Server 2003 use the Kerberos...

2.1CVSS6.1AI score0.06521EPSS
Exploits0References1
Symantec
Symantec
added 2004/04/13 12:0 a.m.18 views

Microsoft Windows 2000 Domain Controller LDAP Denial Of Service Vulnerability

Description A denial of service vulnerability has been reported in Microsoft Windows 2000 Server systems that are acting as Domain Controllers. This issue may be triggered by sending a malformed LDAP query to an affected Windows 2000 Domain Controller. This will cause a reboot in the Domain...

Exploits0References1Affected Software1
Rows per page
Query Builder