19 matches found
EUVD-2015-3293
Malware in sbrugna...
EUVD-2018-5727
Malware in sbrugna...
PT-2025-10816
Name of the Vulnerable Software and Affected Versions Microsoft Windows File Explorer affected versions not specified Description A security flaw in Windows File Explorer allows attackers to capture NTLM hashed credentials when a user opens a folder containing a specially crafted .library-ms file...
CVE-2018-13789
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers...
Design/Logic Flaw
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers...
CVE-2018-13789
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers...
CVE-2018-13789
CVE-2018-13789 affects Descor Infocad FM prior to 3.1.0.0. An unauthenticated web service permits retrieval of files from the web server and from reachable SMB servers, indicating potential exposure of sensitive data via network access. The provided documents do not specify affected components be...
Microsoft Windows: Microsoft network client: Send unencrypted password to third-party SMB servers
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winncunencryptedpasswordsmb.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for Microsoft network client: Send unencrypted password to third-party SMB servers Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone...
May 8, 2018—KB4103718 (Monthly Rollup)
May 8, 2018—KB4103718 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were part of update KB4093113 released April 17, 2018 and addresses the following issues: Addresses an issue that may cause a memory leak on SMB servers after installing KB4056897...
April 10, 2018—KB4093118 (Monthly Rollup)
April 10, 2018—KB4093118 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4088881released March 23, 2018 and addresses the following issues: Addresses an issue where a new Ethernet Network Interface Card NIC that has default...
February 13, 2018—KB4074587 (Security-only update)
February 13, 2018—KB4074587 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Security updates to Windows Graphics, Windows Kernel, Common Log File System drive...
CVE-2015-3237
The smbrequeststate function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service out-of-bounds read and crash via crafted length and offset values...
CVE-2015-3237
The CVE-2015-3237 issue affects curl/libcurl 7.40.0–7.42.1. In the smb_request_state() handler, two length and offset values parsed from network data are used without proper boundary checks, enabling a remote SMB server to read memory contents or trigger a crash. Impacts include information discl...
CVE-2011-2899
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the 1 NetBIOS or 2 workgroup name, which are not properly handled when searching for network printers...
Code injection
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the 1 NetBIOS or 2 workgroup name, which are not properly handled when searching for network printers...
CVE-2011-2899
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the 1 NetBIOS or 2 workgroup name, which are not properly handled when searching for network printers...
CVE-2011-2899
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the 1 NetBIOS or 2 workgroup name, which are not properly handled when searching for network printers...
CVE-2008-3285
The Filesys::SmbClientParser module 2.7 and earlier for Perl allows remote SMB servers to execute arbitrary code via a folder name containing shell metacharacters...
Command injection
URLMount in Apple Mac OS X 10.3.9 through 10.4.9 passes the username and password credentials for mounting filesystems on SMB servers as command line arguments to the mountsub command, which may allow local users to obtain sensitive information by listing the process...