Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2000-0937
Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote malicious users to conduct brute force password guessing attacks.
Samba Samba 2.0.7
1 EDB exploit
3.5
CVSSv2
CVE-2013-0172
Samba 4.0.x prior to 4.0.1, in certain Active Directory domain-controller configurations, does not properly interpret Access Control Entries that are based on an objectClass, which allows remote authenticated users to bypass intended restrictions on modifying LDAP directory objec...
Samba Samba 4.0.0
5
CVSSv2
CVE-1999-0811
Buffer overflow in Samba smbd program via a malformed message command.
Samba Samba 2.0.4
1 EDB exploit
7.6
CVSSv2
CVE-1999-0812
Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations.
Samba Samba 2.0.5
7.2
CVSSv2
CVE-2000-0935
Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file.
Samba Samba 2.0.7
2 EDB exploits
7.2
CVSSv2
CVE-2007-2444
Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d up to and including 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to the root user.
Samba Samba 3.0.25
Samba Samba 3.0.24
Samba Samba 3.0.23d
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
7.2
CVSSv2
CVE-2004-0186
smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting a Samba share that contains a setuid root program, whose setuid attributes are not cleared when the share is mounted.
Samba Samba 3.0.0
Samba Samba 2.0
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6 Test9 Cvs
1 EDB exploit
9.3
CVSSv2
CVE-2004-2687
distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote malicious users to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.
Samba Samba
Apple Xcode 1.5
1 EDB exploit
1 Nmap script
9 Github repositories
NA
CVE-2022-32743
Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.
Samba Samba
Fedoraproject Fedora 37
NA
CVE-2022-44640
Heimdal prior to 7.7.1 allows remote malicious users to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).
Heimdal Project Heimdal
Samba Samba
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »