Samba

Samba

217 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.59%
  • Veröffentlicht 06.02.2007 02:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:35

smbd in Samba 3.0.6 through 3.0.23d allows remote authenticated users to cause a denial of service (memory and CPU exhaustion) by renaming a file in a way that prevents a request from being removed from the deferred open queue, which triggers an infi...

  • EPSS 0.72%
  • Veröffentlicht 06.02.2007 02:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:35

Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 through 3.0.23d, as used in the winbindd daemon on Solaris, allows attackers to execute arbitrary code via the (1) gethostbyname and (2) getipnodebyname functions.

  • EPSS 6.41%
  • Veröffentlicht 06.02.2007 02:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:36

Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 through 3.0.23d allows context-dependent attackers to execute arbitrary code via format string specifiers in a filename on an AFS file system, which is not properly handled during...

  • EPSS 5.5%
  • Veröffentlicht 12.07.2006 19:05:00
  • Zuletzt bearbeitet 16.06.2026 22:26:59

The smdb daemon (smbd/service.c) in Samba 3.0.1 through 3.0.22 allows remote attackers to cause a denial of service (memory consumption) via a large number of share connection requests.

  • EPSS 0.46%
  • Veröffentlicht 30.03.2006 17:06:00
  • Zuletzt bearbeitet 16.06.2026 22:21:56

The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.

  • EPSS 13.73%
  • Veröffentlicht 27.01.2005 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:35

Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small "maximum data bytes" value.

Exploit
  • EPSS 4.91%
  • Veröffentlicht 27.01.2005 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:41

The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause a denial of service (CPU consumption) via a SAMBA request that contains multiple * (wildcard) characters.

  • EPSS 13.2%
  • Veröffentlicht 10.01.2005 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:07:08

Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of securit...

  • EPSS 5.36%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:25

The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of ...

  • EPSS 3.91%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:28

smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2.