samba: group policy certificate enrollment uses http:// without validation

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability t...

CVE-2026-3012

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability t...

EUVD-2010-4570

Malware in sbrugna...

Security Bulletin: Tivoli Storage Manager Linux x86_64 Client Arbitrary DSO Load Elevation of Privileges (CVE-2014-6185)

Summary A vulnerability in the IBM Tivoli Storage Manager TSM Linux x8664 client could allow a local user to gain elevated privileges due to an arbitrary DSO load. Vulnerability Details CVEID: CVE-2014-6185 DESCRIPTION: IBM Tivoli Storage Manager could allow a local attacker to trick one of the...

Security Bulletin: TSM client SetUID elevation of privilege (CVE-2014-0907)

Summary A vulnerability in the IBM Tivoli Storage Manager TSM AIX and HP-UX clients could allow a local user to gain elevated privilege. Vulnerability Details CVE ID: CVE-2014-0907 DESCRIPTION: The IBM Tivoli Storage Manager TSM AIX and HP-UX client binaries have been compiled in an insecure way....

CVE-2010-4604

Stack-based buffer overflow in the GeneratePassword function in dsmtca aka the Trusted Communications Agent or TCA in the backup-archive client in IBM Tivoli Storage Manager TSM 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.2.10, and 6.1.x before 6.1.3.1 on Unix and Linux allows...