CVE-2023-54260

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb direct connection info is NULL, then smbddestroy will directly return, then the connection info will be leaked. Let's set the smb...

SUSE CVE-2006-3403

The smdb daemon smbd/service.c in Samba 3.0.1 through 3.0.22 allows remote attackers to cause a denial of service memory consumption via a large number of share connection requests...

SUSE CVE-2007-2444

Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to the root user...

Unauthorized Access Control Modification

Samba is vulnerable Unauthorized Access Control Modification. An uninitialized data access flaw was discovered in the smbd daemon when using the non-default "dos filemode" configuration option in "smb.conf". An authenticated, remote user with write access to a file could possibly use this flaw to...

Samba smbd Daemon Symlink Verification Information Disclosure (CVE-2015-5252)

An information disclosure vulnerability has been reported in Samba. The vulnerability is due to flaws in the symbolic link verification mechanism. A remote, authenticated attacker could exploit this vulnerability by using an SMB client to request for files or directories outside the share path...

Samba file sharing services remote command execution vulnerability(CVE-2 0 1 5-0 2 4 0)-vulnerability warning-the black bar safety net

! t01b9c96682271c023e.jpg Is storm the CVE-2 0 1 5-0 2 4 0 security vulnerabilities occur in the smbd daemon, he can be a malicious samba client to use, an attacker by sending a carefully constructed packet to the samba server, authentication is not required, it is possible to cause the remote...

Unexpected code execution in smbd.

Description All versions of Samba from 3.5.0 to 4.2.0rc4 are vulnerable to an unexpected code execution vulnerability in the smbd file server daemon. A malicious client could send packets that may set up the stack in such a way that the freeing of memory in a subsequent anonymous netlogon packet...

CentOS Update for samba CESA-2009:1529 centos4 i386

Check for the Version of samba OpenVAS Vulnerability Test CentOS Update for samba CESA-2009:1529 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Samba 3.4.7/3.5.1 - Denial of Service

=============================================================================== stratsec Security Advisory: SS-2010-005 =============================================================================== Title: Samba Multiple DoS Vulnerabilities Version: 1.0 Issue type: Multiple Affected vendor: Samb...

RedHat Security Advisory RHSA-2009:1585

The remote host is missing updates announced in advisory RHSA-2009:1585. Samba is a suite of programs used by machines to share files, printers, and other information. These samba3x packages provide Samba 3.3, which is a Technology Preview for Red Hat Enterprise Linux 5. These packages cannot be...

samba security update

CentOS Errata and Security Advisory CESA-2009:1529 Updated samba packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Samba is a suite of programs use...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : samba vulnerabilities (USN-839-1)

J. David Hester discovered that Samba incorrectly handled users that lack home directories when the automated homes share is enabled. An authenticated user could connect to that share name and gain access to the whole filesystem. CVE-2009-2813 Tim Prouty discovered that the smbd daemon in Samba...

[SECURITY] [DSA 1823-1] New samba packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1823-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst June 25, 2009 http://www.debian.org/security/faq -...

SuSE 10 Security Update : samba (ZYPP Patch Number 2556)

A logic error in the deferred open code can lead to an infinite loop in Samba's smbd daemon. CVE-2007-0452 In addition the following changes are included with these packages : - Move tdb utils to the client package. - The version string of binaries reported by the -V option now include the packag...

Moderate: Red Hat Security Advisory: samba security update

Updated samba packages that fix a denial of service vulnerability are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Samba provides file and printer sharing services to SMB/CIFS clients. A denial ...

CVE-2006-3403

The smdb daemon smbd/service.c in Samba 3.0.1 through 3.0.22 allows remote attackers to cause a denial of service memory consumption via a large number of share connection requests...

CVE-2006-3403

CVE-2006-3403 affects Samba 3.0.1–3.0.22 where the smbd service could be forced to consume memory by a flood of share-connection requests, enabling a remote DoS. A fix was released in later Samba versions (e.g., 3.0.23 and beyond) to address the memory-exhaustion condition; multiple vendor adviso...

FreeBSD : samba -- integer overflow vulnerability (3b3676be-52e1-11d9-a9e7-0001020eed82)

Greg MacManus, iDEFENSE Labs reports : Remote exploitation of an integer overflow vulnerability in the smbd daemon included in Samba 2.0.x, Samba 2.2.x, and Samba 3.0.x prior to and including 3.0.9 could allow an attacker to cause controllable heap corruption, leading to execution of arbitrary...