Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba samba vulnerabilities and exploits
(subscribe to this query)
756
VMScore
CVE-2008-4314
smbd in Samba 3.0.29 up to and including 3.2.4 might allow remote malicious users to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper bounds check ...
Samba Samba 3.0.31
Samba Samba 3.0.29
Samba Samba 3.2.3
Samba Samba 3.2.4
Samba Samba 3.0.32
Samba Samba 3.2.1
Samba Samba 3.0.33
Samba Samba 3.2.2
Samba Samba 3.0.30
Samba Samba 3.2.0
668
VMScore
CVE-2002-2196
Samba prior to 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote malicious users to execute arbitrary code via a buffer overflow attack.
Samba Samba 2.2.1a
Samba Samba 2.2.3a
Samba Samba 1.9.18
Samba Samba 1.9.17
Samba Samba 2.2.1
Samba Samba 2.2a
Samba Samba 2.0.5a
Samba Samba
Samba Samba 2.0.0
890
VMScore
CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x up to and including 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that...
Samba Samba 2.2.1a
Samba Samba 3.0.3
Samba Samba 2.0.10
Samba Samba 2.2.12
Samba Samba 3.0.8
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 3.0.2a
Samba Samba 3.0.5
Samba Samba 2.2.8a
Samba Samba 3.0.6
Samba Samba 3.0.4
Samba Samba 2.2.9
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 3.0.0
Samba Samba 2.2.11
Samba Samba 3.0.9
Samba Samba 2.0.4
Samba Samba 3.0.7
Samba Samba 2.2.7a
445
VMScore
CVE-2004-0808
The process_logon_packet function in the nmbd server for Samba 3.0.6 and previous versions, when domain logons are enabled, allows remote malicious users to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures tha...
Samba Samba 3.0.3
Samba Samba 3.0.2a
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.4
Samba Samba 3.0.0
Samba Samba 3.0.2
Samba Samba 3.0.1
561
VMScore
CVE-2009-0022
Samba 3.2.0 up to and including 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.
Samba Samba 3.2.5
Samba Samba 3.2.3
Samba Samba 3.2.4
Samba Samba 3.2.1
Samba Samba 3.2.2
Samba Samba 3.2.0
Samba Samba 3.2.6
668
VMScore
CVE-2007-0454
Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 up to and including 3.0.23d allows context-dependent malicious users to execute arbitrary code via format string specifiers in a filename on an AFS file system, which is not properly handled during Windows ACL...
Samba Samba 3.0.14a
Samba Samba 3.0.8
Samba Samba 3.0.6
Samba Samba 3.0.21a
Samba Samba 3.0.20a
Samba Samba 3.0.21b
Samba Samba 3.0.9
Samba Samba 3.0.11
Samba Samba 3.0.7
Samba Samba 3.0.13
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.14
Samba Samba 3.0.21c
Samba Samba 3.0.12
Samba Samba 3.0.20
Samba Samba 3.0.10
Samba Samba 3.0.23d
Samba Samba 3.0.22
Mandrakesoft Mandrake Linux 2006
Mandrakesoft Mandrake Linux Corporate Server 4.0
Debian Debian Linux 3.1
392
VMScore
CVE-2010-0787
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file.
Samba Samba 3.2.3
Samba Samba 3.4.0
Samba Samba 3.4.5
Samba Samba 3.0.28a
Samba Samba 3.0.22
1000
VMScore
CVE-2003-0085
Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba prior to 2.2.8, and Samba-TNG prior to 0.3.1, allows remote malicious users to execute arbitrary code.
Samba Samba 2.2.1a
Samba Samba 2.0.10
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 2.0.4
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.0.9
Samba Samba 2.0.3
Samba Samba 2.2.6
Samba Samba 2.2.0a
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.2.2
Samba Samba 2.0.5
Samba Samba 2.2.0
Samba Samba 2.0.0
Samba Samba 2.2.5
Samba Samba 2.2.7
3 EDB exploits
107
VMScore
CVE-2006-1059
The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.21
Samba Samba 3.0.21c
534
VMScore
CVE-2013-1863
Samba 4.x prior to 4.0.4, when configured as an Active Directory domain controller, uses world-writable permissions on non-default CIFS shares, which allows remote authenticated users to read, modify, create, or delete arbitrary files via standard filesystem operations.
Samba Samba 4.0.2
Samba Samba 4.0.3
Samba Samba 4.0.1
Samba Samba 4.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »