Ethereal 0.x - Multiple iSNS SMB SNMP Protocol Dissector Vulnerabilities

Ethereal 0.x - Multiple iSNS SMB SNMP Protocol Dissector Vulnerabilities // source: https://www.securityfocus.com/bid/10672/info Ethereal 0.10.5 has been released to address multiple vulnerabilities, including an iSNS protocol dissector vulnerability, a SMB protocol dissector vulnerability, and a...

Fedora Core 1 : ethereal-0.10.0a-0.1 (2003-040)

Serious issues have been discovered in the following protocol dissectors : - Selecting 'Match-Selected' or 'Prepare-Selected' for a malformed SMB packet could cause a segmentation fault. - It is possible for the Q.931 dissector to dereference a NULL pointer when reading a malformed packet. Impact...

Microsoft Windows fails to properly validate buffer size of incoming SMB packets

Overview Microsoft's implementation of Server Message Block SMB contains a buffer overflow vulnerability that could permit a remote attacker to execute arbitrary code or cause a denial of service. Description SMB and the Common Internet File System CIFS are closely related protocols used sharing...

Microsoft Windows 2000XP - SMB Authentication Remote Overflow

Microsoft Windows 2000XP - SMB Authentication Remote Overflow Exploit for "Authentication flaw in Windows SMB protocol" Release Date: April 24, 2003 Code by Haamed Gheibi [email protected] Salman Niksefat [email protected] Systems Affected by this exploit: Windows 2000 SP0 SP1 SP2...

Authentication flaw in microsoft SMB protocol

Detailed information: http://seclab.ce.aut.ac.ir/vreport.htm Summary ======= Microsoft uses SMB Protocol for “File and Printer sharing service” in all versions of Windows. Upon accessing a network resource, NTLM Authentication is used to authenticate the client on the server. When a logged-in use...

Samba 2.2.0 2.2.8 (OSX) - trans2open Overflow (Metasploit)

Samba 2.2.0 2.2.8 OSX - trans2open Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Samba 2.2.x - nttrans Remote Overflow (Metasploit)

Samba 2.2.x - nttrans Remote Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

CVE-2002-0724

Buffer overflow in SMB Server Message Block protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows attackers to cause a denial of service crash via a SMBCOMTRANSACTION packet with a request for the 1 NetShareEnum, 2 NetServerEnum2, or 3 NetServerEnum3, aka "Unchecked Buffer in...

CVE-2002-0724

CVE-2002-0724 (MS02-045) describes a remote DoS in Windows SMB where handling SMB_COM_TRANSACTION with NetShareEnum/NetServerEnum2/NetServerEnum3 can overflow the heap when Max Param/Data Count is 0. A crafted packet may crash the host (Blue Screen) and, per CERT/Core advisories, might enable fur...

CVE-2002-0724

Buffer overflow in SMB Server Message Block protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows attackers to cause a denial of service crash via a SMBCOMTRANSACTION packet with a request for the 1 NetShareEnum, 2 NetServerEnum2, or 3 NetServerEnum3, aka "Unchecked Buffer in...

MS02-045: Microsoft Windows SMB Protocol SMB_COM_TRANSACTION Packet Remote Overflow DoS (326830) (uncredentialed check)

The remote host is vulnerable to a denial of service attack in its SMB stack. An attacker may exploit this flaw to crash the remote host remotely, without any authentication. C Tenable Network Security, Inc. This script was written by Renaud Deraison Thanks to Ivan Arce who provided me with all t...

Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum2 transaction

Overview Microsoft Server Message Block SMB may crash when it receives a crafted SMBCOMTRANSACTION packet requesting a NetServerEnum2 transaction. Attackers can use this vulnerability to cause a denial of service. Description SMB is a protocol for sharing data and resources between computers. It ...

Microsoft Windows XP/2000/NT 4.0 - Network Share Provider SMB Request Buffer Overflow (1)

// source: https://www.securityfocus.com/bid/5556/info Microsoft Windows operating systems use the Server Message Block SMB protocol to support services such as file and printer sharing. A buffer overflow vulnerability has been reporting in the handling of some malformed SMB requests. An attacker...

Microsoft Windows XP2000NT 4.0 - Network Share Provider SMB Request Buffer Overflow (1)

Microsoft Windows XP2000NT 4.0 - Network Share Provider SMB Request Buffer Overflow 1 // source: https://www.securityfocus.com/bid/5556/info Microsoft Windows operating systems use the Server Message Block SMB protocol to support services such as file and printer sharing. A buffer overflow...

CVE-2000-1227

Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service unavailable connections by sending multiple SMB SMBnegprots requests but not reading the response that is sent back...

Microsoft Windows 95/Windows for Workgroups - 'smbclient' Directory Traversal

source: https://www.securityfocus.com/bid/1884/info Samba is a set of of programs that allow Windows® clients access to a Unix server's filespace and printers over NetBIOS. A directory traversal vulnerability exists in Microsoft's implementation of the SMB file and print sharing protocol for...