Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba samba vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2009-1886
Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 up to and including 3.2.12 might allow context-dependent malicious users to execute arbitrary code via format string specifiers in a filename.
Samba Samba 3.2.5
Samba Samba 3.2.6
Samba Samba 3.2.12
Samba Samba 3.2.3
Samba Samba 3.2.2
Samba Samba 3.2.8
Samba Samba 3.2.9
Samba Samba 3.2.1
Samba Samba 3.2.0
Samba Samba 3.2.7
Samba Samba 3.2.4
Samba Samba 3.2.11
Samba Samba 3.2.10
1 EDB exploit
9.3
CVSSv2
CVE-2007-6015
Stack-based buffer overflow in the send_mailslot function in nmbd in Samba 3.0.0 up to and including 3.0.27a, when the "domain logons" option is enabled, allows remote malicious users to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string...
Samba Samba 2.0.1
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.2.3
Samba Samba 2.2.3a
Samba Samba 2.2.8a
Samba Samba 2.2.9
Samba Samba 3.0.13
Samba Samba 3.0.14
Samba Samba 3.0.21b
Samba Samba 3.0.21c
Samba Samba 3.0.25
Samba Samba 3.0.25c
Samba Samba 3.0.26
Samba Samba 2.0.3
Samba Samba 2.0.4
Samba Samba 2.2.0a
Samba Samba 2.2.11
Samba Samba 2.2.6
Samba Samba 2.2.7
Samba Samba 3.0.1
Samba Samba 3.0.10
1 EDB exploit
9.3
CVSSv2
CVE-2007-4572
Stack-based buffer overflow in nmbd in Samba 3.0.0 up to and including 3.0.26a, when configured as a Primary or Backup Domain controller, allows remote malicious users to have an unknown impact via crafted GETDC mailslot requests, related to handling of GETDC logon server request...
Samba Samba 3.0.11
Samba Samba 3.0.12
Samba Samba 3.0.18
Samba Samba 3.0.19
Samba Samba 3.0.21c
Samba Samba 3.0.22
Samba Samba 3.0.25
Samba Samba 3.0.25c
Samba Samba 3.0.26
Samba Samba 3.0.26a
Samba Samba 3.0.7
Samba Samba 3.0.8
Samba Samba 3.0.0
Samba Samba 3.0.14a
Samba Samba 3.0.15
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.23b
Samba Samba 3.0.23c
Samba Samba 3.0.4
Samba Samba 3.0.1
Samba Samba 3.0.10
9.3
CVSSv2
CVE-2007-5398
Stack-based buffer overflow in the reply_netbios_packet function in nmbd/nmbd_packets.c in nmbd in Samba 3.0.0 up to and including 3.0.26a, when operating as a WINS server, allows remote malicious users to execute arbitrary code via crafted WINS Name Registration requests followe...
Samba Samba 3.0.1
Samba Samba 3.0.10
Samba Samba 3.0.16
Samba Samba 3.0.17
Samba Samba 3.0.21
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.23d
Samba Samba 3.0.24
Samba Samba 3.0.25a
Samba Samba 3.0.25b
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.11
Samba Samba 3.0.12
Samba Samba 3.0.18
Samba Samba 3.0.19
Samba Samba 3.0.21c
Samba Samba 3.0.22
Samba Samba 3.0.25
Samba Samba 3.0.25c
Samba Samba 3.0.26
9.3
CVSSv2
CVE-2007-0731
Stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) in Apple Mac OS X 10.4 up to and including 10.4.8 allows context-dependent malicious users to execute arbitrary code via a long ACL.
Apple Mac Os X 10.4.4
Apple Mac Os X 10.4.5
Apple Mac Os X Server 10.4.4
Apple Mac Os X Server 10.4.5
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.7
Apple Mac Os X Server 10.4.6
Apple Mac Os X Server 10.4.7
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.8
Apple Mac Os X Server 10.4
Apple Mac Os X Server 10.4.8
Apple Mac Os X 10.4.2
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.1
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.3
9.3
CVSSv2
CVE-2004-2687
distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote malicious users to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.
Samba Samba
Apple Xcode 1.5
1 EDB exploit
1 Nmap script
9 Github repositories
9
CVSSv2
CVE-2021-44142
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions before 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow ou...
Samba Samba
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 21.10
Synology Diskstation Manager
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux For Scientific Computing 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Resilient Storage 7.0
Redhat Enterprise Linux For Power Little Endian 7.0
Redhat Enterprise Linux For Power Big Endian 7.0
Redhat Enterprise Linux For Ibm Z Systems 7.0
Redhat Virtualization Host 4.0
Redhat Enterprise Linux 8.0
3 Github repositories
1 Article
9
CVSSv2
CVE-2020-25719
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found withi...
Samba Samba
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 21.04
Canonical Ubuntu Linux 21.10
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux For Scientific Computing 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux For Power Little Endian 7.0
Redhat Enterprise Linux For Power Big Endian 7.0
Redhat Enterprise Linux For Ibm Z Systems 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
9
CVSSv2
CVE-2021-34527
<p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install p...
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 -
Microsoft Windows 7 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019
Microsoft Windows Server 20h2
Microsoft Windows 10 1809
Microsoft Windows 10 20h2
Microsoft Windows 10 1507
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows Server 2022
Microsoft Windows 11 21h2
Microsoft Windows 10 21h2
Microsoft Windows 11 22h2
Microsoft Windows 10 22h2
108 Github repositories
6 Articles
9
CVSSv2
CVE-2020-17049
<p>A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).</p> <p>To exploit the vulnerability, a compromised service that is con...
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012
Microsoft Windows Server 2019 -
Microsoft Windows Server 2016 1903
Microsoft Windows Server 2016 1909
Microsoft Windows Server 2016 2004
Microsoft Windows Server 2016 20h2
Samba Samba
15 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »