13 matches found
EUVD-2017-18394
Malware in sbrugna...
EUVD-2018-6534
Malware in sbrugna...
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2023-3258)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated samba packages fix security vulnerability
Stefan Metzmacher discovered that Samba incorrectly enforced SMB signing in certain situations. A remote attacker could use this issue to perform a man in the middle attack. CVE-2017-12150 Yihan Lian and Zhibin Hu discovered that Samba incorrectly handled memory when SMB1 is being used. A remote...
CVE-2007-2444
Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to the root user...
MGASA-2014-0138 Updated samba packages fix security vulnerability
In Samba before 3.6.23, the SAMR server neglects to ensure that attempted password changes will update the bad password count, and does not set the lockout flags. This would allow a user unlimited attempts against the password by simply calling ChangePasswordUser2 repeatedly. This is available...
Samba 3.6.x < 3.6.3 Denial of Service
Binary data 6299.prm...
CVE-2008-1105
Heap-based buffer overflow in the receivesmbraw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response...
Samba 3.0.27a - send_mailslot() Remote Buffer Overflow
Samba 3.0.27a - sendmailslot Remote Buffer Overflow / http://secunia.com/secuniaresearch/2007-99/advisory/ A remote attacker could send a specially crafted "SAMLOGON" domain logon packet, possibly leading to the execution of arbitrary code with elevated privileges. Note that this vulnerability is...
CVE-2007-6015
Stack-based buffer overflow in the sendmailslot function in nmbd in Samba 3.0.0 through 3.0.27a, when the "domain logons" option is enabled, allows remote attackers to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string following an offset username in a SAMLOGON...
Debian DSA-262-1 : samba - remote exploit
Sebastian Krahmer of the SuSE security audit team found two problems in samba, a popular SMB/CIFS implementation. The problems are : - a buffer overflow in the SMB/CIFS packet fragment re-assembly code used by smbd. Since smbd runs as root an attacker can use this to gain root access to a machine...
RHEL 3 : samba (RHSA-2004:064)
Updated Samba packages that fix a security vulnerability are now available. Samba provides file and printer sharing services to SMB/CIFS clients. The Samba team discovered an issue that affects version 3.0.0 and 3.0.1 of Samba. If an account for a user is created, but marked as disabled using the...
Critical: Red Hat Security Advisory: : New samba packages fix security vulnerability
Updated Samba packages that fix a security vulnerability are now available. Updated 9 April 2003 Fixed Samba packages for Red Hat Linux 7.1 have been added to this erratum. Samba is a suite of utilities which provide file and printer sharing services to SMB/CIFS clients. A security vulnerability...