Samba

Samba

217 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 20.48%
  • Veröffentlicht 23.06.2014 14:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The sys_recvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed UDP packet.

  • EPSS 7.27%
  • Veröffentlicht 23.06.2014 14:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x before 4.1.9 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) via an attempt to read a Unicode pathname wi...

  • EPSS 4.47%
  • Veröffentlicht 28.05.2014 04:58:32
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Samba 3.6.6 through 3.6.23, 4.0.x before 4.0.18, and 4.1.x before 4.1.8, when a certain vfs shadow copy configuration is enabled, does not properly initialize the SRV_SNAPSHOT_ARRAY response field, which allows remote authenticated users to obtain po...

  • EPSS 67.57%
  • Veröffentlicht 28.05.2014 04:58:32
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The internal DNS server in Samba 4.x before 4.0.18 does not check the QR field in the header section of an incoming DNS message before sending a response, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via ...

  • EPSS 10.64%
  • Veröffentlicht 14.03.2014 10:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) S...

  • EPSS 4.1%
  • Veröffentlicht 14.03.2014 10:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The owner_set function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass intended access restrictions in opportunistic circu...

  • EPSS 2.75%
  • Veröffentlicht 10.12.2013 06:14:55
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Heap-based buffer overflow in the dcerpc_read_ncacn_packet_done function in librpc/rpc/dcerpc_util.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via...

Exploit
  • EPSS 3.79%
  • Veröffentlicht 03.12.2013 19:55:03
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended a...

  • EPSS 9.02%
  • Veröffentlicht 13.11.2013 15:55:03
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote attackers to bypass intended file restrictions by leveraging ACL differences between a file an...

  • EPSS 0.44%
  • Veröffentlicht 13.11.2013 15:55:03
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information by reading the key file, as demonstrated by access t...