Lucene search
K

52 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:0 p.m.50 views

K13364192: Samba vulnerability CVE-2016-2119

Security Advisory Description libcli/smb/smbXclibase.c in Samba 4.x before 4.2.14, 4.3.x before 4.3.11, and 4.4.x before 4.4.5 allows man-in-the-middle attackers to bypass a client-signing protection mechanism, and consequently spoof SMB2 and SMB3 servers, via the 1 SMB2SESSIONFLAGISGUEST or 2...

7.5CVSS7.5AI score0.03097EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/02/03 12:0 a.m.365 views

Samba 4.0.x < 4.13.17 / 4.14.x < 4.14.12 / 4.15.x < 4.15.5 Multiple Vulnerabilities

The version of Samba running on the remote host is 4.0.x prior to 4.13.17, 4.14.x prior to 4.14.12, or 4.15.x prior to 4.15.5. It is, therefore, affected by multiple vulnerabilities: - Out-of-bounds heap read/write vulnerability in VFS module vfsfruit allows code execution. CVE-2021-44142 -...

9CVSS7.8AI score0.74042EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2020/01/24 12:0 a.m.135 views

Samba 4.x < 4.9.18 / 4.10.x < 4.10.12 / 4.11.x < 4.11.5 Multiple Vulnerabilities

The version of Samba running on the remote host is 4.x prior to 4.9.18, 4.10.x prior to 4.10.12, or 4.11.x prior to 4.11.5. It is, therefore, affected by multiple vulnerabilities: - An issue exists with ACL inheritance due to added or removed delegated rights not being inherited across domain...

6.5CVSS6.8AI score0.03151EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 8:47 a.m.259 views

Security Bulletin: SMB signing not required in IBM Spectrum Protect Plus (CVE-2016-2115)

Summary IBM Spectrum Protect Plus is vulnerable to man-in-the-middle attacks as it does not make SMB signing mandatory. Vulnerability Details CVEID: CVE-2016-2115 DESCRIPTION: Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC...

5.9CVSS1.1AI score0.10232EPSS
Exploits0Affected Software1
NVD
NVD
added 2017/11/27 10:29 p.m.22 views

CVE-2017-14746

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

9.8CVSS9.6AI score0.09876EPSS
Exploits0References11
Prion
Prion
added 2017/11/27 10:29 p.m.55 views

Design/Logic Flaw

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

7.5CVSS9.4AI score0.09876EPSS
Exploits0References11Affected Software6
OSV
OSV
added 2017/11/27 10:29 p.m.30 views

CVE-2017-14746

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

9.8CVSS9.5AI score0.09876EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2017/11/27 10:0 p.m.38 views

CVE-2017-14746

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

9.8CVSS8.1AI score0.09876EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/11/27 10:0 p.m.39 views

CVE-2017-14746

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

9.8CVSS9.7AI score0.09876EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/11/21 12:0 a.m.43 views

CVE-2017-14746

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

9.8CVSS7.2AI score0.09876EPSS
Exploits0References3
Prion
Prion
added 2016/07/07 3:59 p.m.24 views

Design/Logic Flaw

libcli/smb/smbXclibase.c in Samba 4.x before 4.2.14, 4.3.x before 4.3.11, and 4.4.x before 4.4.5 allows man-in-the-middle attackers to bypass a client-signing protection mechanism, and consequently spoof SMB2 and SMB3 servers, via the 1 SMB2SESSIONFLAGISGUEST or 2 SMB2SESSIONFLAGISNULL flag...

6.8CVSS6.7AI score0.03097EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/06/09 12:0 a.m.14 views

Samba 4.x < 4.0.1 Remote Security Bypass

Binary data 9345.prm...

3.5CVSS7.3AI score0.02426EPSS
Exploits0References2
Prion
Prion
added 2016/04/25 12:59 a.m.40 views

Design/Logic Flaw

The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted applicatio...

4.3CVSS7.4AI score0.18171EPSS
Exploits2References41Affected Software2
Prion
Prion
added 2016/04/25 12:59 a.m.23 views

Design/Logic Flaw

The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream...

4.3CVSS6.6AI score0.02601EPSS
Exploits0References25Affected Software2
Debian CVE
Debian CVE
added 2016/04/25 12:0 a.m.54 views

CVE-2016-2111

The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted applicatio...

6.3CVSS6.9AI score0.02902EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2016/04/12 12:0 a.m.23 views

CVE-2016-2114

The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream...

5.9CVSS6.8AI score0.02601EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2016/04/12 12:0 a.m.40 views

CVE-2016-2113

Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate...

7.4CVSS6.8AI score0.02581EPSS
Exploits0References3
Prion
Prion
added 2016/03/13 10:59 p.m.22 views

Out-of-bounds

The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service out-of-bounds read or possibly obtain sensitive information from process memory by...

4.9CVSS7AI score0.02762EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2016/03/13 10:59 p.m.26 views

Design/Logic Flaw

The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4 allows remote authenticated users to modify arbitrary ACLs by using a UNIX SMB1 call to create a symlink, and then using a non-UNIX SMB1 call to write to the ACL...

4CVSS6.7AI score0.12938EPSS
Exploits0References19Affected Software3
Cvelist
Cvelist
added 2016/03/13 10:0 p.m.25 views

CVE-2016-0771

The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service out-of-bounds read or possibly obtain sensitive information from process memory by...

6.2AI score0.02762EPSS
Exploits0References8
Rows per page
Query Builder