Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from ksmbd’s handling of composite requests like QUERYDIRECTORY + QUERYINFOFILEALLINFORMATION. This...

EUVD-2019-5661

Malware in sbrugna...

EUVD-2020-15601

Malware in sbrugna...

Exploit for CVE-2024-27686

MikroTik RouterOS Denial of Service Vulnerability 📌 Descri...

CVE-2020-22844

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service DOS via crafted SMB requests...

CVE-2019-14476

AdRem NetCrunch 10.6.0.4587 has a Server-Side Request Forgery SSRF vulnerability in the NetCrunch server. Every user can trick the server into performing SMB requests to other systems...

CVE-2000-1227

Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service unavailable connections by sending multiple SMB SMBnegprots requests but not reading the response that is sent back...

DEBIAN-CVE-2024-53186

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in SMB request handling A race condition exists between SMB request handling in ksmbdconnhandlerloop and the freeing of ksmbdconn in the workqueue handler handleksmbdwork. This leads to a UAF. - KASAN:...

CVE-2020-22844

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service DOS via crafted SMB requests...

Buffer overflow

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service DOS via crafted SMB requests...

CVE-2020-22844

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service DOS via crafted SMB requests...

CVE-2020-22844

Affects Mikrotik RouterOS (version 6.47). The vulnerability is a buffer overflow in handling SMB requests, enabling unauthenticated attackers to trigger denial of service. The available sources consistently state the issue as a DoS caused by crafted SMB traffic. No concrete remediation details (p...

CVE-2019-14476

AdRem NetCrunch 10.6.0.4587 has a Server-Side Request Forgery SSRF vulnerability in the NetCrunch server. Every user can trick the server into performing SMB requests to other systems...

Server side request forgery (ssrf)

AdRem NetCrunch 10.6.0.4587 has a Server-Side Request Forgery SSRF vulnerability in the NetCrunch server. Every user can trick the server into performing SMB requests to other systems...

CVE-2019-14476

CVE-2019-14476 describes a Server-Side Request Forgery (SSRF) in the NetCrunch server of AdRem NetCrunch 10.6.0.4587. The vulnerability allows any user to induce the server to perform SMB requests to external systems, i.e., it can be tricked into contacting other hosts via SMB from the NetCrunch ...

CVE-2019-14476

AdRem NetCrunch 10.6.0.4587 has a Server-Side Request Forgery SSRF vulnerability in the NetCrunch server. Every user can trick the server into performing SMB requests to other systems...

Microsoft Windows Search Remote Code Execution (CVE-2017-8543)

A remote code execution vulnerability exists in Windows Search Service. The vulnerability is due to out of bounds memory access. A remote attacker can exploit this issue by sending specially crafted SMB requests. A successful exploitation could lead to arbitrary code execution...

SMB Remote Disk Scanning for Executable Files

Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network...

Microsoft Windows NTLMSSP Authentication Request Remote Network Name Disclosure

The remote host listens on tcp port 445 and replies to SMB requests. By sending an NTLMSSP authentication request it is possible to obtain the name of the remote system and the name of its domain. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid42410; scriptversion...

Samba < 3.0.37 / 3.2.15 / 3.3.8 / 3.4.2 Multiple Vulnerabilities

According to its banner, the version of Samba server on the remote host is earlier than 3.0.37 / 3.2.15 / 3.3.8 / 3.4.2. Such versions are potentially affected by multiple issues : - If a user in '/etc/passwd' is misconfigured to have an empty home directory, then connecting to the home share of...