Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2007-0453
Buffer overflow in the nss_winbind.so.1 library in Samba 3.0.21 up to and including 3.0.23d, as used in the winbindd daemon on Solaris, allows malicious users to execute arbitrary code via the (1) gethostbyname and (2) getipnodebyname functions.
Samba Samba 3.0.23a
Samba Samba 3.0.23b
Samba Samba 3.0.23c
Samba Samba 3.0.22
Samba Samba 3.0.23
Samba Samba 3.0.21
Samba Samba 3.0.21a
Samba Samba 3.0.23d
Samba Samba 3.0.21b
Samba Samba 3.0.21c
756
VMScore
CVE-2008-4314
smbd in Samba 3.0.29 up to and including 3.2.4 might allow remote malicious users to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper bounds check ...
Samba Samba 3.0.30
Samba Samba 3.0.31
Samba Samba 3.0.32
Samba Samba 3.2.1
Samba Samba 3.2.0
Samba Samba 3.0.33
Samba Samba 3.2.4
Samba Samba 3.0.29
Samba Samba 3.2.2
Samba Samba 3.2.3
890
VMScore
CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x up to and including 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that...
Samba Samba 2.0.0
Samba Samba 2.0.6
Samba Samba 2.0.7
Samba Samba 2.2.1a
Samba Samba 2.2.2
Samba Samba 2.2.3
Samba Samba 2.2.8
Samba Samba 2.2.8a
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 2.0.1
Samba Samba 2.0.10
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.3a
Samba Samba 2.2.4
Samba Samba 2.2.9
Samba Samba 2.2a
Samba Samba 3.0.4
Samba Samba 2.0.4
Samba Samba 2.0.5
Samba Samba 2.2.11
445
VMScore
CVE-2004-0808
The process_logon_packet function in the nmbd server for Samba 3.0.6 and previous versions, when domain logons are enabled, allows remote malicious users to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures tha...
Samba Samba 3.0.4
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 3.0.0
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.1
Samba Samba 3.0.2
561
VMScore
CVE-2009-0022
Samba 3.2.0 up to and including 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.
Samba Samba 3.2.6
Samba Samba 3.2.0
Samba Samba 3.2.5
Samba Samba 3.2.4
Samba Samba 3.2.3
Samba Samba 3.2.2
Samba Samba 3.2.1
392
VMScore
CVE-2010-0787
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file.
Samba Samba 3.2.3
Samba Samba 3.4.0
Samba Samba 3.4.5
Samba Samba 3.0.28a
Samba Samba 3.0.22
668
VMScore
CVE-2007-0454
Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 up to and including 3.0.23d allows context-dependent malicious users to execute arbitrary code via format string specifiers in a filename on an AFS file system, which is not properly handled during Windows ACL...
Samba Samba 3.0.14
Samba Samba 3.0.14a
Samba Samba 3.0.21c
Samba Samba 3.0.22
Samba Samba 3.0.12
Samba Samba 3.0.13
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.9
Samba Samba 3.0.20
Samba Samba 3.0.20a
Samba Samba 3.0.23d
Samba Samba 3.0.6
Samba Samba 3.0.10
Samba Samba 3.0.11
Samba Samba 3.0.20b
Samba Samba 3.0.21
Samba Samba 3.0.7
Samba Samba 3.0.8
Debian Debian Linux 3.0
Debian Debian Linux 3.1
Mandrakesoft Mandrake Linux 2006
1000
VMScore
CVE-2003-0085
Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba prior to 2.2.8, and Samba-TNG prior to 0.3.1, allows remote malicious users to execute arbitrary code.
Samba Samba 2.0.1
Samba Samba 2.0.10
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.4
Samba Samba 2.2.5
Samba Samba 2.0.2
Samba Samba 2.0.3
Samba Samba 2.2.0
Samba Samba 2.2.0a
Samba Samba 2.2.6
Samba Samba 2.2.7
Samba Samba 2.0.0
Samba Samba 2.0.6
Samba Samba 2.0.7
Samba Samba 2.2.3
Samba Samba 2.2.3a
Samba Samba 2.0.4
Samba Samba 2.0.5
Samba Samba 2.2.1a
Samba Samba 2.2.2
Samba Samba 2.2.7a
3 EDB exploits
107
VMScore
CVE-2006-1059
The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.
Samba Samba 3.0.21a
Samba Samba 3.0.21b
Samba Samba 3.0.21c
Samba Samba 3.0.21
534
VMScore
CVE-2013-1863
Samba 4.x prior to 4.0.4, when configured as an Active Directory domain controller, uses world-writable permissions on non-default CIFS shares, which allows remote authenticated users to read, modify, create, or delete arbitrary files via standard filesystem operations.
Samba Samba 4.0.3
Samba Samba 4.0.0
Samba Samba 4.0.2
Samba Samba 4.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »