CVE-2009-0094

The WINS server in Microsoft Windows 2000 SP4 and Server 2003 SP1 and SP2 does not restrict registration of the 1 "wpad" and 2 "isatap" NetBIOS names, which allows remote authenticated users to hijack the Web Proxy Auto-Discovery WPAD and Intra-Site Automatic Tunnel Addressing Protocol ISATAP...

WINS Server Detection

Binary data 4955.prm...

Microsoft Windows WINS Server WPAD and ISATAP Access Validation Vulnerability

Description The Microsoft Windows WINS Server is prone to an access-validation vulnerability because the software fails to properly restrict access when defining WPAD Web Proxy Autodiscovery Protocol and ISATAP Intra-Site Automatic Tunnel Addressing Protocol entries. An authenticated attacker may...

Microsoft Security Bulletin MS09-008 – Important Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238)

Microsoft Security Bulletin MS09-008 – Important Vulnerabilities in DNS and WINS Server Could Allow Spoofing 962238 Published: March 10, 2009 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities and two publicly disclosed...

Microsoft WINS Server WPAD Registration Spoofing (MS09-008; CVE-2009-0094)

The Web Proxy Auto-Discovery WPAD feature enables web clients to automatically detect proxy settings without user intervention. A WPAD registration spoofing vulnerability has been reported in Microsoft WINS servers. The vulnerability is due to an error in the Windows WINS server that fails to...

Immunity Canvas: MS08_034

Name| ms08034 ---|--- CVE| CVE-2008-1451 Exploit Pack| CANVAS Description| Microsoft WINS Server Vulnerability Notes| CVE Name: CVE-2008-1451 VENDOR: Microsoft MSADV: MS08-034 Repeatability: Infinite MSRC: http://www.microsoft.com/technet/security/Bulletin/MS08-034.mspx CVS URL:...

Microsoft Windows WINS Server Local Privilege Escalation Vulnerability

Description Microsoft Windows WINS server is prone to a local privilege-escalation vulnerability that may be triggered by malicious WINS network packets. Successful exploits allow local attackers to execute arbitrary code with SYSTEM-level privileges, completely compromising the affected computer...

Mandrake Linux Security Advisory : samba (MDKSA-2007:224-3)

The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial o...

[slackware-security] samba

New samba packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues. More details about these issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-4572 https://vulners.com/cve/CVE-2007-5398 Here...

Stack overflow

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

DEBIAN-CVE-2007-5398

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

CVE-2007-5398

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

CVE-2007-5398

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

CVE-2007-5398

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

CVE-2007-5398

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

CVE-2007-5398

Stack-based buffer overflow in the replynetbiospacket function in nmbd/nmbdpackets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requests followed by a WINS Name Query request...

Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : samba vulnerabilities (USN-544-1)

Samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. When samba is configured as a Primary or Backup Domain Controller, a remote attacker could send malicious logon requests and possibly cause a denial of service...

RHEL 2.1 / 3 : samba (RHSA-2007:1013)

Updated samba packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having critical security impact by the Red Hat Security Response Team. Samba is a suite of programs used by machines to share files, printers, and other...

Secunia Research: Samba "reply_netbios_packet()" Buffer Overflow Vulnerability

====================================================================== Secunia Research 15/11/2007 - Samba "replynetbiospacket" Buffer Overflow Vulnerability - ====================================================================== Table of Contents Affected...

Samba multiple security vulnerabilities

Buffer overflow in GETDC mailslot request processing, buffer overflow in WINS server. Client IP may be spoofed...