CVE-2014-0244
- EPSS 20.48%
- Veröffentlicht 23.06.2014 14:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The sys_recvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed UDP packet.
CVE-2014-3493
- EPSS 7.27%
- Veröffentlicht 23.06.2014 14:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) via an attempt to read a Unicode pathname wi...
CVE-2014-0178
- EPSS 4.47%
- Veröffentlicht 28.05.2014 04:58:32
- Zuletzt bearbeitet 06.05.2026 22:30:45
Samba 3.6.6 through 3.6.23, 4.0.x before 4.0.18, and 4.1.x before 4.1.8, when a certain vfs shadow copy configuration is enabled, does not properly initialize the SRV_SNAPSHOT_ARRAY response field, which allows remote authenticated users to obtain po...
- EPSS 67.57%
- Veröffentlicht 28.05.2014 04:58:32
- Zuletzt bearbeitet 06.05.2026 22:30:45
The internal DNS server in Samba 4.x before 4.0.18 does not check the QR field in the header section of an incoming DNS message before sending a response, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via ...
- EPSS 10.64%
- Veröffentlicht 14.03.2014 10:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) S...
CVE-2013-6442
- EPSS 4.1%
- Veröffentlicht 14.03.2014 10:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The owner_set function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circu...
CVE-2013-4408
- EPSS 2.75%
- Veröffentlicht 10.12.2013 06:14:55
- Zuletzt bearbeitet 29.04.2026 01:13:23
Heap-based buffer overflow in the dcerpc_read_ncacn_packet_done function in librpc/rpc/dcerpc_util.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via...
CVE-2012-6150
- EPSS 3.79%
- Veröffentlicht 03.12.2013 19:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended a...
- EPSS 9.02%
- Veröffentlicht 13.11.2013 15:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote attackers to bypass intended file restrictions by leveraging ACL differences between a file an...
CVE-2013-4476
- EPSS 0.44%
- Veröffentlicht 13.11.2013 15:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information by reading the key file, as demonstrated by access t...