Lucene search
K

8 matches found

Prion
Prion
added 2014/06/23 2:55 p.m.31 views

Memory corruption

The pushascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service memory corruption and daemon crash via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a...

2.7CVSS6.7AI score0.07269EPSS
Exploits0References23Affected Software1
Cvelist
Cvelist
added 2014/06/23 2:0 p.m.35 views

CVE-2014-0244

The sysrecvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a malformed UDP packet...

6.1AI score0.20481EPSS
Exploits0References23
Debian CVE
Debian CVE
added 2014/06/23 2:0 p.m.31 views

CVE-2014-3493

The pushascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service memory corruption and daemon crash via an attempt to read a Unicode pathname without specifying use of Unicode, leading to a...

2.7CVSS8.6AI score0.07269EPSS
Exploits0
Metasploit
Metasploit
added 2013/08/28 8:11 p.m.98 views

Samba read_nttrans_ea_list Integer Overflow

Integer overflow in the readnttransealist function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service memory consumption via a malformed packet. Important Note: in order to work, the "ea support" option o...

5CVSS0.4AI score0.69008EPSS
Exploits7
Prion
Prion
added 2013/03/26 9:55 p.m.17 views

Design/Logic Flaw

The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS share attributes, which allows remote authenticated users to 1 write to a read-only share; 2 trigger...

4CVSS6.7AI score0.02981EPSS
Exploits0References7Affected Software3
UbuntuCve
UbuntuCve
added 2013/02/02 12:0 a.m.32 views

CVE-2013-0213

The Samba Web Administration Tool SWAT in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to conduct clickjacking attacks via a 1 FRAME or 2 IFRAME element...

5.1CVSS6.8AI score0.03248EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2012/01/30 5:55 p.m.23 views

CVE-2012-0817

Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote attackers to cause a denial of service memory and CPU consumption by making many connection requests...

5CVSS7.2AI score0.03532EPSS
Exploits0References1
Prion
Prion
added 2012/01/30 5:55 p.m.18 views

Memory corruption

Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote attackers to cause a denial of service memory and CPU consumption by making many connection requests...

5CVSS6.9AI score0.03532EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder