Lucene search
UbuntuUSN-2508-1HistoryFeb 23, 2015 - 12:00 a.m.
Samba vulnerability
2015-02-2300:00:00
ubuntu.com
42
8.5 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.974 High
EPSS
Percentile
99.9%
Releases
- Ubuntu 14.10
- Ubuntu 14.04 ESM
- Ubuntu 12.04
Packages
- samba - SMB/CIFS file, print, and login server for Unix
Details
Richard van Eeden discovered that the Samba smbd file services incorrectly
handled memory. A remote attacker could use this issue to possibly execute
arbitrary code with root privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 14.10 | noarch | samba | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libnss-winbind | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libpam-smbpass | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libpam-winbind | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libparse-pidl-perl | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libsmbclient | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libsmbclient-dev | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libsmbsharemodes-dev | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libsmbsharemodes0 | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libwbclient-dev | <Β 2:4.1.11+dfsg-1ubuntu2.2 | UNKNOWN |
References
Related
securityvulns
securityvulns
Samba memory corruption
2015-02-23 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package samba-DC version 4.1.17-alt1
2015-02-23 00:00:00
Security fix for the ALT Linux 6 package samba version 3.5.22-alt0.M60P.1
2015-02-24 00:00:00
Security fix for the ALT Linux 8 package samba version 4.1.17-alt1
2015-02-23 00:00:00
f5
f5
K16350 : Samba vulnerability CVE-2015-0240
2015-04-02 00:00:00
SOL16350 - Samba vulnerability CVE-2015-0240
2015-04-02 00:00:00
cisa
cisa
Samba Remote Code Execution Vulnerability
2015-02-24 00:00:00
suse
suse
Security update for samba (important)
2015-02-23 16:05:05
Security update for Samba (important)
2015-02-25 08:09:00
Security update for Samba (important)
2015-02-27 11:04:55
debiancve
debiancve
CVE-2015-0240
2015-02-24 01:59:00
nessus
nessus
Oracle Linux 7 : samba (ELSA-2015-0252)
2015-02-24 00:00:00
Fedora 21 : samba-4.1.17-1.fc21 (2015-2538)
2015-02-26 00:00:00
RHEL 6 : samba4 (RHSA-2015:0255)
2015-02-24 00:00:00
openvas
openvas
CentOS Update for samba4 CESA-2015:0250 centos6
2015-02-25 00:00:00
CentOS Update for libsmbclient CESA-2015:0251 centos6
2015-02-25 00:00:00
Debian: Security Advisory (DSA-3171-1)
2015-02-22 00:00:00
freebsd
freebsd
samba -- Unexpected code execution in smbd
2015-02-23 00:00:00
centos
centos
samba4 security update
2015-02-23 14:24:03
samba3x security update
2015-02-23 14:18:15
libsmbclient, libwbclient, samba security update
2015-02-23 14:35:15
oraclelinux
oraclelinux
samba4 security update
2015-02-23 00:00:00
samba security update
2015-02-23 00:00:00
samba3x security update
2015-02-23 00:00:00
redhat
redhat
(RHSA-2015:0257) Critical: samba security update
2015-02-23 00:00:00
(RHSA-2015:0252) Important: samba security update
2015-02-23 00:00:00
(RHSA-2015:0254) Critical: samba security update
2015-02-23 00:00:00
slackware
slackware
[slackware-security] samba
2015-03-05 22:49:31
debian
debian
[SECURITY] [DSA 3171-1] samba security update
2015-02-23 11:48:45
[SECURITY] [DSA 3171-1] samba security update
2015-02-23 11:48:45
[SECURITY] [DLA 156-1] samba security update
2015-02-23 17:00:59
seebug
seebug
Samba NetLogonζͺεε§εζιζΌζ΄οΌCVE-2015-0240οΌ
2015-11-13 00:00:00
prion
prion
Null pointer dereference
2015-02-24 01:59:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:04:32
samba
samba
Unexpected code execution in smbd.
2015-02-23 00:00:00
nvd
nvd
CVE-2015-0240
2015-02-24 01:59:00
zdt
zdt
Samba < 3.6.2 x86 - PoC
2015-04-15 00:00:00
archlinux
archlinux
samba: arbitrary code execution
2015-02-23 00:00:00
cve
cve
CVE-2015-0240
2015-02-24 01:59:00
ibm
ibm
checkpoint_advisories
checkpoint_advisories
Samba smbd ServerPasswordSet RPC Memory Corruption (CVE-2015-0240)
2015-03-03 00:00:00
lenovo
lenovo
Samba Remote Code Execution Vulnerability - Lenovo Support US
2017-01-23 00:00:00
Samba Remote Code Execution Vulnerability
2017-01-23 00:00:00
osv
osv
samba - security update
2015-02-23 00:00:00
samba - security update
2015-02-23 00:00:00
thn
thn
Samba Service Hit By Remote Code Execution Vulnerability
2015-02-24 00:10:00
myhack58
myhack58
mageia
mageia
Updated samba packages fix CVE-2015-0240
2015-02-25 00:20:13
cvelist
cvelist
CVE-2015-0240
2015-02-24 01:00:00
ubuntucve
ubuntucve
CVE-2015-0240
2015-02-23 00:00:00
exploitpack
exploitpack
Samba 3.6.2 (x86) - Denial of Service (PoC)
2015-04-13 00:00:00
metasploit
metasploit
Samba _netr_ServerPasswordSet Uninitialized Credential State
2015-03-05 05:50:14
fedora
fedora
[SECURITY] Fedora 21 Update: samba-4.1.17-1.fc21
2015-02-25 13:30:51
[SECURITY] Fedora 20 Update: samba-4.1.17-1.fc20
2015-02-25 13:28:25
exploitdb
exploitdb
Samba < 3.6.2 (x86) - Denial of Service (PoC)
2015-04-13 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2015-02-25 00:00:00
kitploit
kitploit
Jok3R - Network And Web Pentest Framework
2019-01-23 12:25:00
8.5 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.974 High
EPSS
Percentile
99.9%
Related for USN-2508-1