openSUSE: Security Advisory for update (openSUSE-SU-2013:1339-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-0870

Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a Batched aka AndX...

Heap overflow

Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a Batched aka AndX...

CVE-2012-0870

Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a Batched aka AndX...

CVE-2012-0870

CVE-2012-0870 is a heap-based buffer overflow in Samba 3.x’s smbd (process.c) used for file sharing. The vulnerability allows a remote attacker to cause a daemon crash or potentially execute arbitrary code via a Batched/AndX request that triggers infinite recursion. The linked OpenVAS/Nessus entr...

CVE-2012-0870

Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a Batched aka AndX...

SWAT Samba Web Administration Tool Cross-Site Request Forgery PoC

Exploit for cgi platform in category web applications Thanks & Regards, Narendra. Confidentiality: This e-mail and any attachments may be confidential and may also be privileged. If you are not an intended named recipient, please notify the sender immediately and do not disclose the contents to...

SWAT Samba Web Administration Tool - Cross-Site Request Forgery

Thanks & Regards, Narendra. Confidentiality: This e-mail and any attachments may be confidential and may also be privileged. If you are not an intended named recipient, please notify the sender immediately and do not disclose the contents to another person use it for any purpose, or store or copy...

CVE-2010-2063

Buffer overflow in the SMB1 packet chaining implementation in the chainreply function in process.c in smbd in Samba 3.0.x before 3.3.13 allows remote attackers to cause a denial of service memory corruption and daemon crash or possibly execute arbitrary code via a crafted field in a packet...

Design/Logic Flaw

smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service infinite loop via an unanticipated oplock break notification reply packet...

CVE-2009-1888

The aclgroupoverride function in smbd/posixacls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory...

CVE-2008-4314

smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to read arbitrary memory and cause a denial of service via crafted 1 trans, 2 trans2, and 3 nttrans requests, related to a "cut&paste error" that causes an improper bounds check to be performed...

Stack overflow

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

CVE-2007-0453

CVE-2007-0453 affects Samba 3.0.21 through 3.0.23d (as used by the winbindd daemon on Solaris). The vulnerability is a buffer overflow in the nss_winbind.so.1 library, triggered via the gethostbyname and getipnodebyname functions, allowing an attacker to execute arbitrary code. Connected sources ...

Mandrake Linux Security Advisory : samba (MDKSA-2006:120)

A vulnerability in samba 3.0.x was discovered where an attacker could cause a single smbd process to bloat, exhausting memory on the system. This bug is caused by continually increasing the size of an array which maintains state information about the number of active share connections. Updated...

CVE-2004-0882

Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2QFILEPATHINFO request with a small "maximum data bytes" value...