CVE-2008-4314
- EPSS 4.33%
- Veröffentlicht 01.12.2008 15:30:00
- Zuletzt bearbeitet 16.06.2026 22:57:35
smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper bounds check to...
CVE-2008-3789
- EPSS 0.53%
- Veröffentlicht 27.08.2008 20:41:00
- Zuletzt bearbeitet 16.06.2026 22:56:32
Samba 3.2.0 uses weak permissions (0666) for the (1) group_mapping.tdb and (2) group_mapping.ldb files, which allows local users to modify the membership of Unix groups.
CVE-2008-1105
- EPSS 69.09%
- Veröffentlicht 29.05.2008 16:32:00
- Zuletzt bearbeitet 16.06.2026 22:51:00
Heap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response.
CVE-2007-6015
- EPSS 27.48%
- Veröffentlicht 13.12.2007 21:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:15
Stack-based buffer overflow in the send_mailslot function in nmbd in Samba 3.0.0 through 3.0.27a, when the "domain logons" option is enabled, allows remote attackers to execute arbitrary code via a GETDC mailslot request composed of a long GETDC stri...
CVE-2007-4572
- EPSS 5.89%
- Veröffentlicht 16.11.2007 18:46:00
- Zuletzt bearbeitet 16.06.2026 22:44:21
Stack-based buffer overflow in nmbd in Samba 3.0.0 through 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote attackers to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon se...
CVE-2007-5398
- EPSS 11.25%
- Veröffentlicht 16.11.2007 18:46:00
- Zuletzt bearbeitet 16.06.2026 22:46:02
Stack-based buffer overflow in the reply_netbios_packet function in nmbd/nmbd_packets.c in nmbd in Samba 3.0.0 through 3.0.26a, when operating as a WINS server, allows remote attackers to execute arbitrary code via crafted WINS Name Registration requ...
CVE-2007-4138
- EPSS 0.72%
- Veröffentlicht 14.09.2007 01:17:00
- Zuletzt bearbeitet 16.06.2026 22:43:28
The Winbind nss_info extension (nsswitch/idmap_ad.c) in idmap_ad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the (1) RFC2307 or (2) Services for ...
CVE-2007-2444
- EPSS 0.78%
- Veröffentlicht 14.05.2007 21:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:36
Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to ...
- EPSS 77.81%
- Veröffentlicht 14.05.2007 21:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:36
Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (smb_io_notif...
- EPSS 49.76%
- Veröffentlicht 14.05.2007 21:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:37
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled,...