CVE-2010-0926
- EPSS 30.53%
- Veröffentlicht 10.03.2010 20:13:04
- Zuletzt bearbeitet 16.06.2026 23:17:09
The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3.5.0rc3, when a writable share exists, allows remote authenticated users to leverage a directory traversal vulnerability, and access arbitrary files, by u...
CVE-2010-0728
- EPSS 3.85%
- Veröffentlicht 10.03.2010 20:13:03
- Zuletzt bearbeitet 16.06.2026 23:16:43
smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client.
CVE-2010-0787
- EPSS 0.52%
- Veröffentlicht 02.03.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:16:50
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file.
CVE-2010-0547
- EPSS 0.49%
- Veröffentlicht 04.02.2010 20:15:24
- Zuletzt bearbeitet 16.06.2026 23:16:22
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a ...
- EPSS 4.21%
- Veröffentlicht 07.10.2009 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:28
smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock break notification reply packet.
CVE-2009-2948
- EPSS 0.52%
- Veröffentlicht 07.10.2009 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:33
mount.cifs in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8 and 3.4 before 3.4.2, when mount.cifs is installed suid root, does not properly enforce permissions, which allows local users to read part of the credentials file and obtain t...
- EPSS 2.73%
- Veröffentlicht 14.09.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:16
Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, as used in the SMB subsystem in Apple Mac OS X 10.5.8 when Windows File Sharing is enabled, Fedora 11, and other operating systems, does not properly handle error...
CVE-2009-1886
- EPSS 12.22%
- Veröffentlicht 25.06.2009 01:30:01
- Zuletzt bearbeitet 16.06.2026 23:08:16
Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename.
CVE-2009-1888
- EPSS 4.61%
- Veröffentlicht 25.06.2009 01:30:01
- Zuletzt bearbeitet 16.06.2026 23:08:17
The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vecto...
CVE-2009-0022
- EPSS 3.53%
- Veröffentlicht 05.01.2009 20:30:02
- Zuletzt bearbeitet 16.06.2026 23:04:06
Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.