Lucene search
UbuntuUSN-1423-1HistoryApr 13, 2012 - 12:00 a.m.
Samba vulnerability
2012-04-1300:00:00
ubuntu.com
45
10 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.494 Medium
EPSS
Percentile
97.5%
Releases
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04
- Ubuntu 8.04
Packages
- samba - SMB/CIFS file, print, and login server for Unix
Details
Brian Gorenc discovered that Samba incorrectly calculated array bounds when
handling remote procedure calls (RPC) over the network. A remote,
unauthenticated attacker could exploit this to execute arbitrary code as the
root user. (CVE-2012-1182)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | samba | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libpam-smbpass | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libsmbclient | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libsmbclient-dev | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | samba-common | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | samba-dbg | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | smbclient | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | smbfs | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | swat | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
| Ubuntu | 8.04 | noarch | winbind | < 3.0.28a-1ubuntu4.18 | UNKNOWN |
References
Related
nessus
nessus
Scientific Linux Security Update : samba4 on SL6.x i386/x86_64 (20130221)
2013-03-05 00:00:00
openSUSE Security Update : samba (openSUSE-SU-2012:0508-1)
2014-06-13 00:00:00
Fedora 16 : samba4-4.0.0-38.alpha16.fc16 (2012-6382)
2012-05-16 00:00:00
openvas
openvas
Fedora Update for samba4 FEDORA-2012-6349
2012-05-04 00:00:00
CentOS Update for openchange CESA-2013:0515 centos6
2013-03-12 00:00:00
CentOS Update for samba4 CESA-2013:0506 centos6
2013-03-12 00:00:00
securityvulns
securityvulns
HP Server Automation code execution
2012-06-17 00:00:00
Samba array index overflow
2012-04-19 00:00:00
seebug
seebug
Samba < 3.6.3 版本ndr_pull_lsa_SidArray堆溢出漏洞(CVE-2012-1182)
2012-04-12 00:00:00
oraclelinux
oraclelinux
samba security update
2012-04-10 00:00:00
samba security update
2012-04-16 00:00:00
openchange security, bug fix and enhancement update
2013-02-27 00:00:00
packetstorm
packetstorm
Samba SetInformationPolicy AuditEventsInfo Heap Overflow
2012-09-28 00:00:00
Samba 3.x Remote Root
2012-09-25 00:00:00
f5
f5
SOL13719 - Samba vulnerability CVE-2012-1182
2012-07-10 00:00:00
K13719 : Samba vulnerability CVE-2012-1182
2013-08-29 00:00:00
thn
thn
Samba remote code execution vulnerability, Patch Released !
2012-04-12 12:10:00
suse
suse
Security update for Samba (critical)
2012-04-14 10:08:19
Security update for Samba (critical)
2012-04-14 10:08:18
update for samba (critical)
2012-04-16 16:08:12
cve
cve
CVE-2012-1182
2012-04-10 21:55:00
zdi
zdi
Samba SetInfoPolicy AuditEventsInfo Remote Code Execution Vulnerability
2012-04-18 00:00:00
Samba lsa_LookupNames Heap Overflow Remote Code Execution Vulnerability
2012-04-18 00:00:00
Samba ndr_ValidatePassword heap overflow Remote Code Execution Vulnerability
2012-04-18 00:00:00
centos
centos
libsmbclient, samba security update
2012-04-10 21:30:27
samba4 security update
2013-02-27 19:38:13
samba3x security update
2012-04-10 21:13:02
freebsd
freebsd
samba -- "root" credential remote code execution
2012-04-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Samba SetInformationPolicy AuditEventsInfo Heap Overflow (CVE-2012-1182)
2013-07-28 00:00:00
Samba DCE RPC IDL Parser Out-of-bounds Array Access (CVE-2012-1182)
2012-10-14 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:57:16
ubuntucve
ubuntucve
CVE-2012-1182
2012-04-10 00:00:00
canvas
canvas
Immunity Canvas: CVE_2012_1182_NONX
2012-04-10 17:55:02
Immunity Canvas: CVE_2012_1182
2012-04-10 21:55:00
redhat
redhat
(RHSA-2012:0478) Critical: samba security update
2012-04-13 00:00:00
(RHSA-2012:0466) Critical: samba3x security update
2012-04-10 00:00:00
(RHSA-2013:0506) Moderate: samba4 security, bug fix and enhancement update
2013-02-21 00:00:00
debian
debian
[BSA-070] Security Update for samba
2012-04-14 08:51:02
[SECURITY] [DSA 2450-1] samba security update
2012-04-12 20:29:01
cisa
cisa
Samba Releases Updates for 3.0.x - 3.6.3
2012-04-11 00:00:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 16 Update: samba4-4.0.0-38.alpha16.fc16
2012-05-15 23:28:34
[SECURITY] Fedora 15 Update: samba4-4.0.0-26.alpha11.fc15.6
2012-05-03 07:32:37
prion
prion
Input validation
2012-04-10 21:55:00
altlinux
altlinux
Security fix for the ALT Linux 6 package samba version 3.5.14-alt1.M60P.1
2012-04-11 00:00:00
Security fix for the ALT Linux 5 package samba version 3.0.37-alt5.M50P.1
2012-04-11 00:00:00
samba
samba
"root" credential remote code execution.
2012-04-10 00:00:00
debiancve
debiancve
CVE-2012-1182
2012-04-10 21:55:00
nmap
nmap
tso-enum NSE Script
2016-12-08 21:17:53
hadoop-namenode-info NSE Script
2011-11-08 16:00:16
broadcast-networker-discover NSE Script
2012-02-25 16:06:30
10 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.494 Medium
EPSS
Percentile
97.5%
Related for USN-1423-1