Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba samba vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-16548
The receive_xattr function in xattrs.c in rsync 3.1.2 and 3.1.3-development does not check for a trailing '\0' character in an xattr name, which allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) or possibly ha...
Samba Rsync
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 9.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 17.10
668
VMScore
CVE-2017-15994
rsync 3.1.3-development prior to 2017-10-24 mishandles archaic checksums, which makes it easier for remote malicious users to bypass intended access restrictions. NOTE: the rsync development branch has significant use beyond the rsync developers, e.g., the code has been copied fo...
Samba Rsync
668
VMScore
CVE-2010-3069
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba prior to 3.5.5 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.
Samba Samba
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
668
VMScore
CVE-2008-1720
Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support enabled, might allow remote malicious users to execute arbitrary code via unknown vectors.
Samba Rsync 2.7.8
Samba Rsync 2.6.9
Samba Rsync 2.7.1
Samba Rsync 2.7.9
Samba Rsync 3.0.0
Samba Rsync 2.8.9
Samba Rsync 2.7.7
Samba Rsync 2.7.4
Samba Rsync 2.8.2
Samba Rsync 2.7.3
Samba Rsync 2.9.9
Samba Rsync 2.9.8
Samba Rsync 2.8.7
Samba Rsync 2.9.6
Samba Rsync 2.9.3
Samba Rsync 2.8.4
Samba Rsync 2.8.1
Samba Rsync 2.9.0
Samba Rsync 2.8.8
Samba Rsync 2.8.5
Samba Rsync 2.7.2
Samba Rsync 2.9.7
668
VMScore
CVE-2007-0454
Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 up to and including 3.0.23d allows context-dependent malicious users to execute arbitrary code via format string specifiers in a filename on an AFS file system, which is not properly handled during Windows ACL...
Samba Samba 3.0.14a
Samba Samba 3.0.8
Samba Samba 3.0.6
Samba Samba 3.0.21a
Samba Samba 3.0.20a
Samba Samba 3.0.21b
Samba Samba 3.0.9
Samba Samba 3.0.11
Samba Samba 3.0.7
Samba Samba 3.0.13
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.14
Samba Samba 3.0.21c
Samba Samba 3.0.12
Samba Samba 3.0.20
Samba Samba 3.0.10
Samba Samba 3.0.23d
Samba Samba 3.0.22
Mandrakesoft Mandrake Linux 2006
Mandrakesoft Mandrake Linux Corporate Server 4.0
Debian Debian Linux 3.1
668
VMScore
CVE-2004-1541
SecureCRT 4.0, 4.1, and possibly other versions, allows remote malicious users to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
Van Dyke Technologies Securecrt 4.0.1
Van Dyke Technologies Securecrt 4.1.3
Van Dyke Technologies Securecrt 4.1.4
Van Dyke Technologies Securecrt 4.1.6
Van Dyke Technologies Securecrt 4.0.2
Van Dyke Technologies Securecrt 4.1.1
Van Dyke Technologies Securecrt 4.1.2
Van Dyke Technologies Securecrt 4.1.7
Van Dyke Technologies Securecrt 4.0.5
Van Dyke Technologies Securecrt 4.1.5
Van Dyke Technologies Securecrt 4.1
Van Dyke Technologies Securecrt 4.0.4
Van Dyke Technologies Securecrt 4.1.8
Van Dyke Technologies Securecrt 4.0.3
668
VMScore
CVE-2004-0815
The unix_clean_name function in Samba 2.2.x up to and including 2.2.11, and 3.0.x prior to 3.0.2a, trims certain directory names down to absolute paths, which could allow remote malicious users to bypass the specified share restrictions and read, write, or list arbitrary files vi...
Samba Samba 2.2.1a
Samba Samba 2.2.3a
Samba Samba 3.0.2a
Samba Samba 2.2.8a
Samba Samba 2.2.9
Samba Samba 2.2.3
Samba Samba 3.0.0
Samba Samba 2.2.11
Samba Samba 2.2.7a
Samba Samba 2.2.4
Samba Samba 2.2a
Samba Samba 2.2.6
Samba Samba 2.2.8
Samba Samba 3.0.2
Samba Samba 2.2.0a
Samba Samba 2.2.2
Samba Samba 2.2.0
Samba Samba 2.2.5
Samba Samba 2.2.7
Samba Samba 3.0.1
668
VMScore
CVE-2004-0082
The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
Samba Samba 3.0.0
Samba Samba 3.0.1
668
VMScore
CVE-2004-0028
jitterbug 1.6.2 does not properly sanitize inputs, which allows remote authenticated users to execute arbitrary commands.
Samba Jitterbug 1.6.2
668
VMScore
CVE-2003-1332
Stack-based buffer overflow in the reply_nttrans function in Samba 2.2.7a and previous versions allows remote malicious users to execute arbitrary code via a crafted request, a different vulnerability than CVE-2003-0201.
Samba Samba
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »