Lucene search
K

92 matches found

Tenable Nessus
Tenable Nessus
added 2013/09/20 12:0 a.m.44 views

SuSE 11.2 Security Update : Samba (SAT Patch Number 8170)

The Samba server suite received a security update to fix a denial of service problem in integer wrap protection. CVE-2013-4124. Additionally, the following stability fixes are included in this update : - Do not restart the smbfs service on pre-11.3 systems during dhcp lease renewal when the IP...

5CVSS7.3AI score0.69008EPSS
Exploits7References15
Saint
Saint
added 2012/10/29 12:0 a.m.56 views

GE Proficy Historian KeyHelp ActiveX LaunchTriPane Vulnerability

Added: 10/29/2012 CVE: CVE-2012-2516 BID: 54215 OSVDB: 83311 Background GE Proficy Historian collects, organizes, archives and distributes tremendous volumes of real-time production information with a goal of enabling better and faster decisions and increased productivity. Problem GE Proficy...

9.3CVSS6.9AI score0.39711EPSS
Exploits9
Saint
Saint
added 2012/10/29 12:0 a.m.45 views

GE Proficy Historian KeyHelp ActiveX LaunchTriPane Vulnerability

Added: 10/29/2012 CVE: CVE-2012-2516 BID: 54215 OSVDB: 83311 Background GE Proficy Historian collects, organizes, archives and distributes tremendous volumes of real-time production information with a goal of enabling better and faster decisions and increased productivity. Problem GE Proficy...

9.3CVSS6.9AI score0.39711EPSS
Exploits9
Saint
Saint
added 2011/11/25 12:0 a.m.29 views

Wireshark Lua Untrusted Search Path vulnerability

Added: 11/25/2011 CVE: CVE-2011-3360 BID: 49528 OSVDB: 75347 Background Wireshark is a network packet analyzer. Problem A vulnerability in Wireshark allows execution of arbitrary Lua scripts placed in untrusted directories which are included in Wireshark's search path. Resolution Upgrade to...

9.3CVSS7.5AI score0.35528EPSS
Exploits9
Saint
Saint
added 2011/11/25 12:0 a.m.38 views

Wireshark Lua Untrusted Search Path vulnerability

Added: 11/25/2011 CVE: CVE-2011-3360 BID: 49528 OSVDB: 75347 Background Wireshark is a network packet analyzer. Problem A vulnerability in Wireshark allows execution of arbitrary Lua scripts placed in untrusted directories which are included in Wireshark's search path. Resolution Upgrade to...

9.3CVSS7.6AI score0.35528EPSS
Exploits9
Saint
Saint
added 2011/06/07 12:0 a.m.33 views

HP Data Protector Client EXEC_CMD Command Execution

Added: 06/07/2011 CVE: CVE-2011-0923 BID: 46234 OSVDB: 72526 Background HP OpenView Storage Data Protector is a backup solution for enterprise and distributed environments. Problem The HP Data Protector Client is vulnerable to remote code execution as a result of insufficient input validation of...

10CVSS7.3AI score0.81081EPSS
Exploits30
Saint
Saint
added 2011/04/08 12:0 a.m.22 views

Zend Server Java Bridge Remote Code Execution

Added: 04/08/2011 BID: 47060 OSVDB: 71420 Background Zend Server is an enterprise web application server for hosting PHP applications. Problem The Zend Server Java Bridge allows PHP applications to execute methods in Java classes. The Java Bridge does not validate that requests to execute Java co...

Exploits0
Saint
Saint
added 2010/11/19 12:0 a.m.33 views

Oracle Secure Backup Administration selector parameter command injection

Added: 11/19/2010 CVE: CVE-2010-0906 BID: 41597 OSVDB: 67128 Background Oracle Secure Backup is a centralized tape backup management solution for Oracle Database. Problem A command injection vulnerability allows remote, authenticated attackers to execute arbitrary commands specified in the...

9CVSS7.4AI score0.02243EPSS
Exploits12
Prion
Prion
added 2010/03/10 8:13 p.m.28 views

Directory traversal

The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by using the symlink command in smbclient to create...

3.5CVSS6.6AI score0.3053EPSS
Exploits6References35Affected Software1
exploitpack
exploitpack
added 2010/02/04 12:0 a.m.16 views

Samba 3.4.5 - Symlink Directory Traversal

Samba 3.4.5 - Symlink Directory Traversal source: https://www.securityfocus.com/bid/38111/info Samba is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploits would allow an attacker to access files outside of the Samba...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/10/02 12:0 a.m.251 views

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : samba vulnerabilities (USN-839-1)

J. David Hester discovered that Samba incorrectly handled users that lack home directories when the automated homes share is enabled. An authenticated user could connect to that share name and gain access to the whole filesystem. CVE-2009-2813 Tim Prouty discovered that the smbd daemon in Samba...

9.3CVSS6.2AI score0.12222EPSS
Exploits6References6
Ubuntu
Ubuntu
added 2009/10/01 7:27 p.m.113 views

USN-839-1: Samba vulnerabilities

J. David Hester discovered that Samba incorrectly handled users that lack home directories when the automated homes share is enabled. An authenticated user could connect to that share name and gain access to the whole filesystem. CVE-2009-2813 Tim Prouty discovered that the smbd daemon in Samba...

9.3CVSS6.2AI score0.12222EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.39 views

openSUSE Security Update : cifs-mount (cifs-mount-1036)

Fixed a format string vulnerability in smbclient CVE-2009-1886 and a ACL bypass vulnerability in samba CVE-2009-1888. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update cifs-mount-1036. The text...

9.3CVSS7.2AI score0.12222EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.35 views

openSUSE Security Update : cifs-mount (cifs-mount-1036)

Fixed a format string vulnerability in smbclient CVE-2009-1886 and a ACL bypass vulnerability in samba CVE-2009-1888. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update cifs-mount-1036. The text...

9.3CVSS7.2AI score0.12222EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2009/06/30 12:0 a.m.38 views

Debian DSA-1823-1 : samba - several vulnerabilities

Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1886 The smbclient utility contains a formatstring vulnerability where commands dealing with file names...

9.3CVSS6.9AI score0.12222EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2009/06/30 12:0 a.m.37 views

Samba Format String Vulnerability

Samba is prone to a format string vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:samba:samba"; ifdescription...

9.3CVSS7.4AI score0.12222EPSS
Exploits1References3
securityvulns
securityvulns
added 2009/06/26 12:0 a.m.61 views

[SECURITY] [DSA 1823-1] New samba packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1823-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst June 25, 2009 http://www.debian.org/security/faq -...

9.3CVSS0.12222EPSS
Exploits2
OSV
OSV
added 2009/06/25 1:30 a.m.1 views

DEBIAN-CVE-2009-1886

Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename...

9.3CVSS8AI score0.12222EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2009/06/25 1:30 a.m.41 views

CVE-2009-1886

Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename...

9.3CVSS7.2AI score0.12222EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2009/06/24 12:0 a.m.31 views

Samba < 3.0.35 / 3.2.13 / 3.3.6 Multiple Vulnerabilities

According to its version number, the version of Samba running on the remote host has a security bypass vulnerability. Access restrictions can be bypassed due to a read of uninitialized data in smbd. This could allow a user to modify an access control list ACL, even when they should be denied...

9.3CVSS7.9AI score0.12222EPSS
Exploits3References5
Rows per page
Query Builder