Lucene search
+L

160 matches found

openvas
openvas
added 2016/01/07 12:0 a.m.46 views

Ubuntu: Security Advisory (USN-2856-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.06884EPSS
Exploits0References2
nessus
nessus
added 2016/01/06 12:0 a.m.51 views

Ubuntu 14.04 LTS : ldb vulnerabilities (USN-2856-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2856-1 advisory. Thilo Uttendorfer discovered that the ldb incorrectly handled certain zero values. A remote attacker could use this issue to cause applications using ldb...

7.5CVSS6.8AI score0.06884EPSS
Exploits0References3
osv
osv
added 2016/01/05 6:45 p.m.8 views

USN-2856-1 ldb vulnerabilities

Thilo Uttendorfer discovered that the ldb incorrectly handled certain zero values. A remote attacker could use this issue to cause applications using ldb, such as Samba, to stop responding, resulting in a denial of service. CVE-2015-3223 Douglas Bagnall discovered that ldb incorrectly handled...

7.5CVSS6.8AI score0.06884EPSS
Exploits0References3
ubuntu
ubuntu
added 2016/01/05 6:45 p.m.106 views

USN-2856-1: ldb vulnerabilities

Thilo Uttendorfer discovered that the ldb incorrectly handled certain zero values. A remote attacker could use this issue to cause applications using ldb, such as Samba, to stop responding, resulting in a denial of service. CVE-2015-3223 Douglas Bagnall discovered that ldb incorrectly handled...

7.5CVSS6.8AI score0.06884EPSS
Exploits0
nvd
nvd
added 2015/12/29 10:59 p.m.20 views

CVE-2015-5330

ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive information from daemon heap memory by sending crafted packets and then reading 1 an error message ...

7.5CVSS7.3AI score0.06114EPSS
Exploits0References25
osv
osv
added 2015/12/29 10:59 p.m.2 views

DEBIAN-CVE-2015-3223

The ldbwildcardcompare function in ldbmatch.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service infinite loop via crafted packets...

5.3CVSS8.9AI score0.06884EPSS
Exploits0References1
nvd
nvd
added 2015/12/29 10:59 p.m.20 views

CVE-2015-3223

The ldbwildcardcompare function in ldbmatch.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service infinite loop via crafted packets...

5.3CVSS6AI score0.06884EPSS
Exploits0References19
cvelist
cvelist
added 2015/12/29 10:0 p.m.35 views

CVE-2015-5330

ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive information from daemon heap memory by sending crafted packets and then reading 1 an error message ...

7.2AI score0.06114EPSS
Exploits0References25
cve
cve
added 2015/12/29 10:0 p.m.146 views

CVE-2015-5330

CVE-2015-5330 affects the ldb component used by the Samba AD LDAP server. The issue arises in ldb before 1.1.24, within Samba 4.x deployments (before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3), where string lengths are mishandled. This enables a remote attacker to read sensitive data fro...

7.5CVSS6.2AI score0.06114EPSS
Exploits0References25Affected Software1
nessus
nessus
added 2015/12/29 12:0 a.m.43 views

openSUSE Security Update : samba / ldb / talloc / etc (openSUSE-2015-945)

"This update for ldb, samba, talloc, tdb, tevent fixes the following issues : ldb was updated to 1.1.24. + Fix ldap \00 search expression attack dos; cve-2015-3223; bso11325 + Fix remote read memory exploit in ldb; cve-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for testing + Fix...

7.5CVSS6.6AI score0.13584EPSS
Exploits1References20
nessus
nessus
added 2015/12/29 12:0 a.m.33 views

openSUSE Security Update : ldb / samba / talloc / etc (openSUSE-2015-943)

"This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs : The Samba LDB was updated to version 1.1.24 : - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata...

7.5CVSS6.7AI score0.13584EPSS
Exploits1References15
openvas
openvas
added 2015/12/25 12:0 a.m.47 views

openSUSE: Security Advisory for samba (openSUSE-SU-2015:2356-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS6.6AI score0.13584EPSS
Exploits0References1
opensuse
opensuse
added 2015/12/24 4:10 p.m.40 views

Security update for samba, ldb, talloc, tdb, tevent (important)

This update for ldb, samba, talloc, tdb, tevent fixes the following issues: ldb was updated to 1.1.24. + Fix ldap \00 search expression attack dos; cve-2015-3223; bso11325 + Fix remote read memory exploit in ldb; cve-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for testing + Fix...

6CVSS1AI score0.13584EPSS
Exploits1References13
nessus
nessus
added 2015/12/21 12:0 a.m.40 views

SUSE SLED12 / SLES12 Security Update : ldb, samba, talloc, tdb, tevent (SUSE-SU-2015:2304-1)

"This update for ldb, samba, talloc, tdb, tevent fixes the following security issues : - ldb was updated to version 1.1.24. + Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 + Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h f...

7.5CVSS6.7AI score0.13584EPSS
Exploits1References36
nessus
nessus
added 2015/12/21 12:0 a.m.39 views

SUSE SLED12 / SLES12 Security Update : ldb, samba, talloc, tdb, tevent (SUSE-SU-2015:2305-1)

"This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs : The Samba LDB was updated to version 1.1.24 : - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata...

7.5CVSS6.7AI score0.13584EPSS
Exploits1References22
osv
osv
added 2015/12/18 5:18 p.m.6 views

SUSE-SU-2015:2305-1 Security update for ldb, samba, talloc, tdb, tevent

This update for ldb, samba, talloc, tdb, tevent fixes the following security issues and bugs: The Samba LDB was updated to version 1.1.24: - Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 - Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 - Move ldbunpackdata int...

7.5CVSS6.7AI score0.13584EPSS
Exploits1References16
osv
osv
added 2015/12/18 4:47 p.m.10 views

SUSE-SU-2015:2304-1 Security update for ldb, samba, talloc, tdb, tevent

This update for ldb, samba, talloc, tdb, tevent fixes the following security issues: - ldb was updated to version 1.1.24. + Fix ldap \00 search expression attack dos; CVE-2015-3223; bso11325 + Fix remote read memory exploit in ldb; CVE-2015-5330; bso11599 + Move ldbunpackdata into ldbmodule.h for...

7.5CVSS6.9AI score0.13584EPSS
Exploits1References30
osv
osv
added 2015/12/16 12:0 a.m.5 views

UBUNTU-CVE-2015-3223

The ldbwildcardcompare function in ldbmatch.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service infinite loop via crafted packets...

5.3CVSS6.8AI score0.06884EPSS
Exploits0References5
nessus
nessus
added 2014/08/21 12:0 a.m.32 views

openSUSE Security Update : samba (openSUSE-SU-2014:1040-1)

"This samba update fixes the following security and non security issues : - Fix winbind service parameter usage; bnc890005. - lib/param: change the default for 'winbind expand groups' to '0'; bnc890008. - Update to 4.1.11. + A malicious browser can send packets that may overwrite the heap of the...

7.9CVSS7.8AI score0.56378EPSS
Exploits0References8
osv
osv
added 2008/08/27 8:41 p.m.2 views

DEBIAN-CVE-2008-3789

Samba 3.2.0 uses weak permissions 0666 for the 1 groupmapping.tdb and 2 groupmapping.ldb files, which allows local users to modify the membership of Unix groups...

2.1CVSS8.9AI score0.00533EPSS
Exploits1References1
Rows per page
Query Builder