Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba samba 3.0.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-0082
The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
Samba Samba 3.0.1
Samba Samba 3.0.0
5
CVSSv2
CVE-2004-0808
The process_logon_packet function in the nmbd server for Samba 3.0.6 and previous versions, when domain logons are enabled, allows remote malicious users to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures tha...
Samba Samba 3.0.4
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 3.0.0
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.1
Samba Samba 3.0.2
7.5
CVSSv2
CVE-2004-0815
The unix_clean_name function in Samba 2.2.x up to and including 2.2.11, and 3.0.x prior to 3.0.2a, trims certain directory names down to absolute paths, which could allow remote malicious users to bypass the specified share restrictions and read, write, or list arbitrary files vi...
Samba Samba 2.2.0
Samba Samba 2.2.5
Samba Samba 2.2.6
Samba Samba 3.0.0
Samba Samba 2.2.0a
Samba Samba 2.2.11
Samba Samba 2.2.1a
Samba Samba 2.2.7
Samba Samba 2.2.7a
Samba Samba 3.0.1
Samba Samba 3.0.2
Samba Samba 2.2.2
Samba Samba 2.2.3
Samba Samba 2.2.8
Samba Samba 2.2.8a
Samba Samba 3.0.2a
Samba Samba 2.2.3a
Samba Samba 2.2.4
Samba Samba 2.2.9
Samba Samba 2.2a
5
CVSSv2
CVE-2004-0807
Samba 3.0.6 and previous versions allows remote malicious users to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.
Samba Samba 3.0.1
Samba Samba 3.0.2
Sgi Samba 3.0.2
Sgi Samba 3.0.3
Samba Samba 3.0.0
Samba Samba 3.0.6
Sgi Samba 3.0.1
Conectiva Linux 10.0
Conectiva Linux 9.0
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 3.0.4
Sgi Samba 3.0.4
Sgi Samba 3.0.5
Samba Samba 3.0.5
Sgi Samba 3.0.6
Sgi Samba 3.0
Mandrakesoft Mandrake Linux 10.0
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 8.1
Suse Suse Linux 8.2
5.1
CVSSv2
CVE-2011-1097
rsync 3.x prior to 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via malformed data.
Samba Rsync 3.0.5
Samba Rsync 3.0.0
Samba Rsync 3.0.3
Samba Rsync 3.0.2
Samba Rsync 3.0.7
Samba Rsync 3.0.4
Samba Rsync 3.0.1
Samba Rsync 3.0.6
6.4
CVSSv2
CVE-2004-2546
Multiple memory leaks in Samba prior to 3.0.6 allow malicious users to cause a denial of service (memory consumption).
Samba Samba 1.9.17
Samba Samba 1.9.18
Samba Samba 2.2.1
Samba Samba 2.2.10
Samba Samba 2.2.9
Samba Samba 2.2a
Samba Samba 3.0.4
Samba Samba 3.0.5
Samba Samba 2.0
Samba Samba 2.2.1a
Samba Samba 2.2.3a
Samba Samba 3.0.1
Samba Samba 3.0.2
Samba Samba 2.0.0
Samba Samba 2.0.5a
Samba Samba 2.2.7a
Samba Samba 2.2.8a
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 2.2.11
Samba Samba 2.2.12
Samba Samba 3.0.0
5
CVSSv2
CVE-2006-3403
The smdb daemon (smbd/service.c) in Samba 3.0.1 up to and including 3.0.22 allows remote malicious users to cause a denial of service (memory consumption) via a large number of share connection requests.
Samba Samba 3.0.13
Samba Samba 3.0.14
Samba Samba 3.0.2
Samba Samba 3.0.20a
Samba Samba 3.0.3
Samba Samba 3.0.4
Samba Samba 3.0.1
Samba Samba 3.0.10
Samba Samba 3.0.16
Samba Samba 3.0.17
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.8
Samba Samba 3.0.9
Samba Samba 3.0.14a
Samba Samba 3.0.15
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.7
Samba Samba 3.0.11
10
CVSSv2
CVE-2007-2446
Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 up to and including 3.0.25rc3 allow remote malicious users to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (smb_io_notify_option_typ...
Samba Samba 3.0.14
Samba Samba 3.0.14a
Samba Samba 3.0.20a
Samba Samba 3.0.20b
Samba Samba 3.0.23a
Samba Samba 3.0.23b
Samba Samba 3.0.25
Samba Samba 3.0.0
Samba Samba 3.0.1
Samba Samba 3.0.15
Samba Samba 3.0.16
Samba Samba 3.0.21
Samba Samba 3.0.21a
Samba Samba 3.0.23c
Samba Samba 3.0.23d
Samba Samba 3.0.2a
Samba Samba 3.0.12
Samba Samba 3.0.13
Samba Samba 3.0.2
Samba Samba 3.0.20
Samba Samba 3.0.22
Samba Samba 3.0.23
4 EDB exploits
3 Github repositories
6
CVSSv2
CVE-2007-2447
The MS-RPC functionality in smbd in Samba 3.0.0 up to and including 3.0.25rc3 allows remote malicious users to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled, a...
Samba Samba 3.0.13
Samba Samba 3.0.14
Samba Samba 3.0.2
Samba Samba 3.0.20
Samba Samba 3.0.22
Samba Samba 3.0.23
Samba Samba 3.0.23a
Samba Samba 3.0.25
Samba Samba 3.0.6
Samba Samba 3.0.7
Samba Samba 3.0.0
Samba Samba 3.0.14a
Samba Samba 3.0.15
Samba Samba 3.0.20a
Samba Samba 3.0.20b
Samba Samba 3.0.23b
Samba Samba 3.0.23c
Samba Samba 3.0.2a
Samba Samba 3.0.8
Samba Samba 3.0.9
Samba Samba 3.0.11
Samba Samba 3.0.12
1 EDB exploit
44 Github repositories
9.3
CVSSv2
CVE-2007-4572
Stack-based buffer overflow in nmbd in Samba 3.0.0 up to and including 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote malicious users to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server request...
Samba Samba 3.0.11
Samba Samba 3.0.12
Samba Samba 3.0.18
Samba Samba 3.0.19
Samba Samba 3.0.21c
Samba Samba 3.0.22
Samba Samba 3.0.25
Samba Samba 3.0.25c
Samba Samba 3.0.26
Samba Samba 3.0.26a
Samba Samba 3.0.7
Samba Samba 3.0.8
Samba Samba 3.0.0
Samba Samba 3.0.14a
Samba Samba 3.0.15
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.23b
Samba Samba 3.0.23c
Samba Samba 3.0.4
Samba Samba 3.0.1
Samba Samba 3.0.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »