Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba samba 2.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-1162
Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba prior to 2.2.0a allows remote malicious users to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
Samba Samba 2.0.6
Samba Samba 2.0.9
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.0.5
Samba Samba 2.2.0
Hp Cifs-9000 Server A.01.06
Hp Cifs-9000 Server A.01.05
1 EDB exploit
NA
CVE-2004-0815
The unix_clean_name function in Samba 2.2.x up to and including 2.2.11, and 3.0.x prior to 3.0.2a, trims certain directory names down to absolute paths, which could allow remote malicious users to bypass the specified share restrictions and read, write, or list arbitrary files vi...
Samba Samba 2.2.1a
Samba Samba 2.2.3a
Samba Samba 3.0.2a
Samba Samba 2.2.8a
Samba Samba 2.2.9
Samba Samba 2.2.3
Samba Samba 3.0.0
Samba Samba 2.2.11
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.2a
Samba Samba 2.2.6
Samba Samba 2.2.8
Samba Samba 3.0.2
Samba Samba 2.2.0a
Samba Samba 2.2.2
Samba Samba 2.2.0
Samba Samba 2.2.5
Samba Samba 2.2.7
Samba Samba 3.0.1
NA
CVE-2003-0086
The code for writing reg files in Samba prior to 2.2.8 allows local users to overwrite arbitrary files via a race condition involving chown.
Samba Samba 2.2.1a
Samba Samba 2.0.10
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 2.0.4
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.0.9
Samba Samba 2.0.3
Samba Samba 2.2.6
Samba Samba 2.2.0a
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.2.2
Samba Samba 2.0.5
Samba Samba 2.2.0
Samba Samba 2.0.0
Samba Samba 2.2.5
Samba Samba 2.2.7
NA
CVE-2004-0829
smbd in Samba prior to 2.2.11 allows remote malicious users to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2.
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 1.9.18
Samba Samba 2.0.2
Samba Samba 1.9.17
Samba Samba 2.2.8a
Samba Samba 2.2.9
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 2.0.4
Samba Samba 2.2.1
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.0.3
Samba Samba 2.2.6
Samba Samba 2.2.8
Samba Samba 2.0.7
Samba Samba 2.0.5a
Samba Samba 2.2.2
Samba Samba 2.0.5
Samba Samba 2.2.10
Samba Samba 2.2.0
NA
CVE-2003-0085
Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba prior to 2.2.8, and Samba-TNG prior to 0.3.1, allows remote malicious users to execute arbitrary code.
Samba Samba 2.2.1a
Samba Samba 2.0.10
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 2.0.4
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.0.9
Samba Samba 2.0.3
Samba Samba 2.2.6
Samba Samba 2.2.0a
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.2.2
Samba Samba 2.0.5
Samba Samba 2.2.0
Samba Samba 2.0.0
Samba Samba 2.2.5
Samba Samba 2.2.7
3 EDB exploits
NA
CVE-2007-6015
Stack-based buffer overflow in the send_mailslot function in nmbd in Samba 3.0.0 up to and including 3.0.27a, when the "domain logons" option is enabled, allows remote malicious users to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string...
Samba Samba 3.0.14a
Samba Samba 2.2.1a
Samba Samba 3.0.27
Samba Samba 2.0.10
Samba Samba 2.2.12
Samba Samba 3.0.25
Samba Samba 2.0.1
Samba Samba 3.0.25b
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 3.0.2a
Samba Samba 2.2.8a
Samba Samba 3.0.26a
Samba Samba 3.0.21a
Samba Samba 3.0.20a
Samba Samba 2.2.9
Samba Samba 2.2.3
Samba Samba 3.0.21b
Samba Samba 2.0.6
Samba Samba 3.0.0
Samba Samba 2.2.11
Samba Samba 3.0.11
1 EDB exploit
NA
CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x up to and including 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that...
Samba Samba 2.2.1a
Samba Samba 3.0.3
Samba Samba 2.0.10
Samba Samba 2.2.12
Samba Samba 3.0.8
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 3.0.2a
Samba Samba 3.0.5
Samba Samba 2.2.8a
Samba Samba 3.0.6
Samba Samba 3.0.4
Samba Samba 2.2.9
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 3.0.0
Samba Samba 2.2.11
Samba Samba 3.0.9
Samba Samba 2.0.4
Samba Samba 3.0.7
Samba Samba 2.2.7a
NA
CVE-2010-0547
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and previous versions does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string.
Samba Samba 3.0.14a
Samba Samba 2.2.1a
Samba Samba 3.0.27
Samba Samba 3.0.31
Samba Samba 3.0.3
Samba Samba 2.2.12
Samba Samba 3.0.8
Samba Samba 3.2.15
Samba Samba 3.3.3
Samba Samba 3.0.29
Samba Samba 3.0.25
Samba Samba 3.0.25b
Samba Samba 3.2.5
Samba Samba 3.4.2
Samba Samba 2.2.3a
Samba Samba 3.2.3
Samba Samba 1.9.18
Samba Samba 3.0.2a
Samba Samba 3.0.36
Samba Samba 3.4.0
Samba Samba 3.2.4
Samba Samba 3.0.5
NA
CVE-2011-2724
The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and previous versions does not properly verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab c...
Samba Samba 3.0.19
Samba Samba 3.0.23
Samba Samba 3.0.14a
Samba Samba 2.2.1a
Samba Samba 3.0.27
Samba Samba 3.0.31
Samba Samba 3.0.3
Samba Samba 2.0.10
Samba Samba 2.2.12
Samba Samba 3.0.8
Samba Samba 3.2.15
Samba Samba 3.3.3
Samba Samba 2.2.3
Samba Samba 3.5.1
Samba Samba 3.0.29
Samba Samba 3.0.25
Samba Samba 2.0.1
Samba Samba 3.0.25b
Samba Samba 3.2.5
Samba Samba 3.4.2
Samba Samba 2.2.3a
Samba Samba 3.5.9
NA
CVE-2003-0196
Multiple buffer overflows in Samba prior to 2.2.8a may allow remote malicious users to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
Samba Samba 2.2.1a
Samba Samba 2.0.10
Samba-tng Samba-tng 0.3.1
Samba Samba 2.0.1
Samba Samba 2.2.3a
Samba Samba 2.0.2
Samba Samba 2.2.3
Samba Samba 2.0.6
Samba Samba 2.0.4
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.0.9
Samba Samba 2.0.3
Samba Samba 2.2.6
Samba Samba 2.2.8
Samba Samba 2.2.0a
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.2.2
Samba Samba 2.0.5
Samba Samba 2.2.0
Samba Samba 2.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »