Samba: Security Vulnerabilities
Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart.
CVSS Score
5.0
EPSS Score
0.007
Published
2000-12-19
Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations.
CVSS Score
7.6
EPSS Score
0.004
Published
2000-07-12
Denial of service in Samba NETBIOS name service daemon (nmbd).
CVSS Score
10.0
EPSS Score
0.005
Published
1999-07-21
Buffer overflow in Samba smbd program via a malformed message command.
CVSS Score
5.0
EPSS Score
0.058
Published
1999-07-21
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-11-19
Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password.
CVSS Score
10.0
EPSS Score
0.03
Published
1997-09-30
Page 24