4 matches found
CVE-2019-14902
There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a subtree would not automatically be taken away on all domain controllers...
Samba DoS Vulnerability (CVE-2019-12435)
Samba is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:samba:samba";...
CVE-2019-12435
CVE-2019-12435 affects Samba 4.9.x before 4.9.9 and 4.10.x before 4.10.5, where a NULL pointer dereference in the AD DC DNS management server (dnsserver) RPC server can cause Denial of Service. The vulnerability is tied to the dnsserver RPC handling in these branches; exploitation details are not...
Samba 4.8.0 < 4.8.10 / 4.9.x < 4.9.6 / 4.10.0 < 4.10.2 Path/Symlink Traversal Vulnerability (CVE-2019-3890)
The version of Samba running on the remote host is 4.8.x 4.8.11 or 4.9.x 4.9.6 or 4.10.0 prior to 4.10.2. It is, therefore, potentially affected by a path/symlink traversal vulnerability. An authenticated, unpriviledged attacker can exploit this issue anywhere they have unix permissions to create...