CVE-2016-2123
- EPSS 6.23%
- Veröffentlicht 01.11.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 02:47:52
A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine ndr_pull_dnsp_name contains an integer wrap problem, leading to an attacker-controlled memory overwrite. ndr_pull_dnsp_name parses data from the Samba Active Directory ldb database....
CVE-2016-2125
- EPSS 9.2%
- Veröffentlicht 31.10.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 02:47:52
It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to othe...
CVE-2018-10858
- EPSS 4.3%
- Veröffentlicht 22.08.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:42:09
A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client. Samba versions before 4.6.16, 4.7.9 and ...
CVE-2018-10918
- EPSS 2.55%
- Veröffentlicht 22.08.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:42:18
A null pointer dereference flaw was found in the way samba checked database outputs from the LDB database layer. An authenticated attacker could use this flaw to crash a samba server in an Active Directory Domain Controller configuration. Samba versi...
CVE-2018-10919
- EPSS 2.2%
- Veröffentlicht 22.08.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:42:18
The Samba Active Directory LDAP server was vulnerable to an information disclosure flaw because of missing access control checks. An authenticated attacker could use this flaw to extract confidential attribute values using LDAP search expressions. Sa...
CVE-2018-1139
- EPSS 3.11%
- Veröffentlicht 22.08.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:59:16
A flaw was found in the way samba before 4.7.9 and 4.8.4 allowed the use of weak NTLMv1 authentication even when NTLMv1 was explicitly disabled. A man-in-the-middle attacker could use this flaw to read the credential and other details passed between ...
CVE-2018-1140
- EPSS 10.84%
- Veröffentlicht 22.08.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:59:16
A missing input sanitization flaw was found in the implementation of LDP database used for the LDAP server. An attacker could use this flaw to cause a denial of service against a samba server, used as a Active Directory Domain Controller. All version...
CVE-2017-12151
- EPSS 4.6%
- Veröffentlicht 27.07.2018 12:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:56
A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol set as SMB3. The connection could lose the requirement for signing and encrypting to any DFS redirects, allowing an attac...
CVE-2017-12150
- EPSS 13.23%
- Veröffentlicht 26.07.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:56
It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in pl...
CVE-2017-12163
- EPSS 7.59%
- Veröffentlicht 26.07.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:57
An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to ...