Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2007-0453
Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 up to and including 3.0.23d, as used in the winbindd daemon on Solaris, allows malicious users to execute arbitrary code via the (1) gethostbyname and (2) getipnodebyname functions.
Samba Samba 3.0.23a
Samba Samba 3.0.23b
Samba Samba 3.0.23c
Samba Samba 3.0.22
Samba Samba 3.0.23
Samba Samba 3.0.21
Samba Samba 3.0.21a
Samba Samba 3.0.23d
Samba Samba 3.0.21b
Samba Samba 3.0.21c
8.5
CVSSv2
CVE-2008-4314
smbd in Samba 3.0.29 up to and including 3.2.4 might allow remote malicious users to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper bounds check ...
Samba Samba 3.0.30
Samba Samba 3.0.31
Samba Samba 3.0.32
Samba Samba 3.2.1
Samba Samba 3.2.0
Samba Samba 3.0.33
Samba Samba 3.2.4
Samba Samba 3.0.29
Samba Samba 3.2.2
Samba Samba 3.2.3
10
CVSSv2
CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x up to and including 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that...
Samba Samba 2.0.0
Samba Samba 2.0.6
Samba Samba 2.0.7
Samba Samba 2.2.1a
Samba Samba 2.2.2
Samba Samba 2.2.3
Samba Samba 2.2.8
Samba Samba 2.2.8a
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 2.0.1
Samba Samba 2.0.10
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.3a
Samba Samba 2.2.4
Samba Samba 2.2.9
Samba Samba 2.2a
Samba Samba 3.0.4
Samba Samba 2.0.4
Samba Samba 2.0.5
Samba Samba 2.2.11
5
CVSSv2
CVE-2004-0808
The process_logon_packet function in the nmbd server for Samba 3.0.6 and previous versions, when domain logons are enabled, allows remote malicious users to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures tha...
Samba Samba 3.0.4
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 3.0.0
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.1
Samba Samba 3.0.2
6.3
CVSSv2
CVE-2009-0022
Samba 3.2.0 up to and including 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.
Samba Samba 3.2.6
Samba Samba 3.2.0
Samba Samba 3.2.5
Samba Samba 3.2.4
Samba Samba 3.2.3
Samba Samba 3.2.2
Samba Samba 3.2.1
7.5
CVSSv2
CVE-2007-0454
Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 up to and including 3.0.23d allows context-dependent malicious users to execute arbitrary code via format string specifiers in a filename on an AFS file system, which is not properly handled during Windows ACL...
Samba Samba 3.0.14
Samba Samba 3.0.14a
Samba Samba 3.0.21c
Samba Samba 3.0.22
Samba Samba 3.0.12
Samba Samba 3.0.13
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.9
Samba Samba 3.0.20
Samba Samba 3.0.20a
Samba Samba 3.0.23d
Samba Samba 3.0.6
Samba Samba 3.0.10
Samba Samba 3.0.11
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.7
Samba Samba 3.0.8
Debian Debian Linux 3.0
Debian Debian Linux 3.1
Mandrakesoft Mandrake Linux 2006
4.4
CVSSv2
CVE-2010-0787
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file.
Samba Samba 3.2.3
Samba Samba 3.4.0
Samba Samba 3.4.5
Samba Samba 3.0.28a
Samba Samba 3.0.22
10
CVSSv2
CVE-2003-0085
Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba prior to 2.2.8, and Samba-TNG prior to 0.3.1, allows remote malicious users to execute arbitrary code.
Samba Samba 2.0.1
Samba Samba 2.0.10
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.4
Samba Samba 2.2.5
Samba Samba 2.0.2
Samba Samba 2.0.3
Samba Samba 2.2.0
Samba Samba 2.2.0a
Samba Samba 2.2.6
Samba Samba 2.2.7
Samba Samba 2.0.0
Samba Samba 2.0.6
Samba Samba 2.0.7
Samba Samba 2.2.3
Samba Samba 2.2.3a
Samba Samba 2.0.4
Samba Samba 2.0.5
Samba Samba 2.2.1a
Samba Samba 2.2.2
Samba Samba 2.2.7a
3 EDB exploits
1.2
CVSSv2
CVE-2006-1059
The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.21c
Samba Samba 3.0.21
6.9
CVSSv2
CVE-2007-4138
The Winbind nss_info extension (nsswitch/idmap_ad.c) in idmap_ad.so in Samba 3.0.25 up to and including 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the (1) RFC2307 or (2) Services for UNIX (SF...
Samba Samba 3.0.25
Samba Samba 3.0.25a
Samba Samba 3.0.25b
Samba Samba 3.0.25c
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »