Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samba vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2001-1162
Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba prior to 2.2.0a allows remote malicious users to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
Samba Samba 2.0.9
Samba Samba 2.2.0
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.0.5
Samba Samba 2.0.6
Hp Cifs-9000 Server A.01.05
Hp Cifs-9000 Server A.01.06
1 EDB exploit
1000
VMScore
CVE-1999-0182
Samba has a buffer overflow which allows a remote malicious user to obtain root access by specifying a long password.
Samba Samba
1 EDB exploit
953
VMScore
CVE-2004-2687
distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote malicious users to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.
Samba Samba
Apple Xcode 1.5
1 EDB exploit
1 Nmap script
9 Github repositories
935
VMScore
CVE-2009-1886
Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 up to and including 3.2.12 might allow context-dependent malicious users to execute arbitrary code via format string specifiers in a filename.
Samba Samba 3.2.5
Samba Samba 3.2.6
Samba Samba 3.2.12
Samba Samba 3.2.3
Samba Samba 3.2.2
Samba Samba 3.2.8
Samba Samba 3.2.9
Samba Samba 3.2.1
Samba Samba 3.2.0
Samba Samba 3.2.7
Samba Samba 3.2.4
Samba Samba 3.2.11
Samba Samba 3.2.10
1 EDB exploit
935
VMScore
CVE-2007-6015
Stack-based buffer overflow in the send_mailslot function in nmbd in Samba 3.0.0 up to and including 3.0.27a, when the "domain logons" option is enabled, allows remote malicious users to execute arbitrary code via a GETDC mailslot request composed of a long GETDC string...
Samba Samba 2.0.1
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.2.3
Samba Samba 2.2.3a
Samba Samba 2.2.8a
Samba Samba 2.2.9
Samba Samba 3.0.13
Samba Samba 3.0.14
Samba Samba 3.0.21b
Samba Samba 3.0.21c
Samba Samba 3.0.25
Samba Samba 3.0.25c
Samba Samba 3.0.26
Samba Samba 2.0.3
Samba Samba 2.0.4
Samba Samba 2.2.0a
Samba Samba 2.2.11
Samba Samba 2.2.6
Samba Samba 2.2.7
Samba Samba 3.0.1
Samba Samba 3.0.10
1 EDB exploit
905
VMScore
CVE-2017-17867
Inteno iopsys 2.0-3.14 and 4.0 devices allow remote authenticated users to execute arbitrary OS commands by modifying the leasetrigger field in the odhcpd configuration to specify an arbitrary program, as demonstrated by a program located on an SMB share. This issue existed becau...
Intenogroup Iopsys
Intenogroup Iopsys 4.0
1 EDB exploit
1 Github repository
890
VMScore
CVE-2013-4658
Linksys EA6500 has SMB Symlink Traversal allowing symbolic links to be created to locations outside of the Samba share.
Linksys Ea6500 Firmware -
890
VMScore
CVE-2004-0882
Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x up to and including 3.0.7 may allow remote malicious users to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small "maximum data bytes" value.
Samba Samba 3.0.0
Samba Samba 3.0.5
Samba Samba 3.0.6
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 3.0.1
Samba Samba 3.0.2
Samba Samba 3.0.7
Conectiva Linux 10.0
Samba Samba 3.0.4
Redhat Enterprise Linux 2.1
Redhat Fedora Core Core 3.0
Redhat Linux Advanced Workstation 2.1
Redhat Enterprise Linux 3.0
Ubuntu Ubuntu Linux 4.1
Redhat Enterprise Linux Desktop 3.0
Redhat Fedora Core Core 2.0
890
VMScore
CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x up to and including 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that...
Samba Samba 2.0.0
Samba Samba 2.0.6
Samba Samba 2.0.7
Samba Samba 2.2.1a
Samba Samba 2.2.2
Samba Samba 2.2.3
Samba Samba 2.2.8
Samba Samba 2.2.8a
Samba Samba 3.0.2a
Samba Samba 3.0.3
Samba Samba 2.0.1
Samba Samba 2.0.10
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.3a
Samba Samba 2.2.4
Samba Samba 2.2.9
Samba Samba 2.2a
Samba Samba 3.0.4
Samba Samba 2.0.4
Samba Samba 2.0.5
Samba Samba 2.2.11
890
VMScore
CVE-2003-0196
Multiple buffer overflows in Samba prior to 2.2.8a may allow remote malicious users to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
Samba-tng Samba-tng 0.3
Samba-tng Samba-tng 0.3.1
Samba Samba 2.0.5
Samba Samba 2.0.6
Samba Samba 2.2.3
Samba Samba 2.2.3a
Samba Samba 2.0.0
Samba Samba 2.0.1
Samba Samba 2.0.7
Samba Samba 2.0.8
Samba Samba 2.0.9
Samba Samba 2.2.4
Samba Samba 2.2.5
Samba Samba 2.0.10
Samba Samba 2.0.2
Samba Samba 2.2.0
Samba Samba 2.2.0a
Samba Samba 2.2.6
Samba Samba 2.2.7
Samba Samba 2.0.3
Samba Samba 2.0.4
Samba Samba 2.2.1a
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »