Samba

Samba

217 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 84.5%
  • Veröffentlicht 05.05.2003 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:01:44

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.

  • EPSS 87.92%
  • Veröffentlicht 31.03.2003 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:01:29

Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code.

  • EPSS 0.51%
  • Veröffentlicht 31.03.2003 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:01:29

The code for writing reg files in Samba before 2.2.8 allows local users to overwrite arbitrary files via a race condition involving chown.

  • EPSS 6.71%
  • Veröffentlicht 31.12.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:00:49

Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack.

  • EPSS 51.91%
  • Veröffentlicht 11.12.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:59:06

Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to ...

  • EPSS 1.14%
  • Veröffentlicht 02.07.2001 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:54:14

Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient.

Exploit
  • EPSS 12.03%
  • Veröffentlicht 23.06.2001 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:55:42

Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.

Exploit
  • EPSS 1.29%
  • Veröffentlicht 19.12.2000 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:52:48

Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file.

Exploit
  • EPSS 1.12%
  • Veröffentlicht 19.12.2000 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:52:48

Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.

Exploit
  • EPSS 7.74%
  • Veröffentlicht 19.12.2000 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:52:48

Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force password guessing attacks.