Samba

Samba

217 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.91%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:09:51

Multiple memory leaks in Samba before 3.0.6 allow attackers to cause a denial of service (memory consumption).

Exploit
  • EPSS 80.98%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:10:08

distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote attackers to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.

Exploit
  • EPSS 4.89%
  • Veröffentlicht 03.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:26

The unix_clean_name function in Samba 2.2.x through 2.2.11, and 3.0.x before 3.0.2a, trims certain directory names down to absolute paths, which could allow remote attackers to bypass the specified share restrictions and read, write, or list arbitrar...

  • EPSS 5.5%
  • Veröffentlicht 13.09.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:25

Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.

  • EPSS 29.44%
  • Veröffentlicht 27.07.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:58

Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication.

  • EPSS 3.67%
  • Veröffentlicht 27.07.2004 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:06:09

Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the "mangling method = hash" option is enabled in smb.conf, has unknown impact and attack vectors.

Exploit
  • EPSS 1.6%
  • Veröffentlicht 15.03.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:07

smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting a Samba share that contains a setuid root program, whose setuid attributes are not cleared when the share is mounted.

  • EPSS 3.5%
  • Veröffentlicht 03.03.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:04:54

The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable pas...

Exploit
  • EPSS 4.95%
  • Veröffentlicht 31.12.2003 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:03:56

Stack-based buffer overflow in the reply_nttrans function in Samba 2.2.7a and earlier allows remote attackers to execute arbitrary code via a crafted request, a different vulnerability than CVE-2003-0201.

  • EPSS 22.76%
  • Veröffentlicht 05.05.2003 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:01:44

Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.