This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:samba:samba
Detail
VendorSambaFirst view 1997-09-30
ProductSambaLast view2019-09-03
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:samba:samba:3.0.053
cpe:/a:samba:samba:4.0.153
cpe:/a:samba:samba:4.0.052
cpe:/a:samba:samba:3.0.251
cpe:/a:samba:samba:3.0.2a51
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:samba:samba:3.0.151
cpe:/a:samba:samba:4.0.251
cpe:/a:samba:samba:4.0.351
cpe:/a:samba:samba:3.0.450
cpe:/a:samba:samba:3.0.350
cpe:/a:samba:samba:4.0.750
cpe:/a:samba:samba:4.0.450
cpe:/a:samba:samba:4.0.550
cpe:/a:samba:samba:4.0.650
cpe:/a:samba:samba:4.0.1050
cpe:/a:samba:samba:4.0.850
cpe:/a:samba:samba:4.0.950
cpe:/a:samba:samba:3.0.649
cpe:/a:samba:samba:4.1.049
cpe:/a:samba:samba:3.0.21c48
cpe:/a:samba:samba:3.0.2148
cpe:/a:samba:samba:3.0.21a48
cpe:/a:samba:samba:3.0.2248
cpe:/a:samba:samba:3.0.548
cpe:/a:samba:samba:3.0.21b48
cpe:/a:samba:samba:4.0.1148
cpe:/a:samba:samba:3.0.23d47
cpe:/a:samba:samba:3.0.747
cpe:/a:samba:samba:4.1.147
cpe:/a:samba:samba:4.1.247
cpe:/a:samba:samba:4.0.1247
cpe:/a:samba:samba:3.0.14a46
cpe:/a:samba:samba:3.0.1346
cpe:/a:samba:samba:3.0.4:rc146
cpe:/a:samba:samba:3.0.20a46
cpe:/a:samba:samba:3.0.20b46
cpe:/a:samba:samba:4.0.1546
cpe:/a:samba:samba:4.0.1446
cpe:/a:samba:samba:4.0.1346
cpe:/a:samba:samba:3.0.1145
cpe:/a:samba:samba:3.0.845
cpe:/a:samba:samba:3.0.1045
cpe:/a:samba:samba:3.0.2045
cpe:/a:samba:samba:3.0.1445
cpe:/a:samba:samba:3.0.945
cpe:/a:samba:samba:3.0.23a45
cpe:/a:samba:samba:3.0.25:pre245
cpe:/a:samba:samba:3.0.23b45
cpe:/a:samba:samba:3.0.23c45
cpe:/a:samba:samba:4.1.445

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
6.42019-09-03CVE-2019-10197NetworkLowNone Requ...
62019-07-31CVE-2018-16860NetworkMediumRequires ...
42019-06-19CVE-2019-12436NetworkLowRequires ...
42019-06-19CVE-2019-12435NetworkLowRequires ...
5.52019-04-09CVE-2019-3880NetworkLowRequires ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.62019-04-09CVE-2019-3870LocalLowNone Requ...
42019-03-06CVE-2019-3824NetworkLowRequires ...
4.32018-11-28CVE-2018-16857NetworkMediumNone Requ...
4.32018-11-28CVE-2018-16853NetworkMediumNone Requ...
3.52018-11-28CVE-2018-16852NetworkMediumRequires ...
42018-11-28CVE-2018-16851NetworkLowRequires ...
42018-11-28CVE-2018-16841NetworkLowRequires ...
42018-11-28CVE-2018-14629NetworkLowRequires ...
6.52018-11-01CVE-2016-2123NetworkLowRequires ...
3.32018-10-31CVE-2016-2125Adjacent ...LowNone Requ...
3.32018-08-22CVE-2018-1140Adjacent ...LowNone Requ...
4.32018-08-22CVE-2018-1139NetworkMediumNone Requ...
42018-08-22CVE-2018-10919NetworkLowRequires ...
42018-08-22CVE-2018-10918NetworkLowRequires ...
6.52018-08-22CVE-2018-10858NetworkLowRequires ...
5.82018-07-27CVE-2017-12151NetworkMediumNone Requ...
4.82018-07-26CVE-2017-12163Adjacent ...LowNone Requ...
5.82018-07-26CVE-2017-12150NetworkMediumNone Requ...
6.52018-03-13CVE-2018-1057NetworkLowRequires ...

CWE : Common Weakness Enumeration

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
17% (17)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
16% (16)CWE-264Permissions, Privileges, and Access Controls
12% (12)CWE-20Improper Input Validation
6% (6)CWE-254Security Features
6% (6)CWE-200Information Exposure
Hide | Show 20 More...
%idName
5% (5)CWE-476NULL Pointer Dereference
3% (3)CWE-310Cryptographic Issues
3% (3)CWE-189Numeric Errors
3% (3)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
2% (2)CWE-399Resource Management Errors
2% (2)CWE-358Improperly Implemented Security Check for Standard
2% (2)CWE-352Cross-Site Request Forgery (CSRF)
2% (2)CWE-284Access Control (Authorization) Issues
2% (2)CWE-275Permission Issues
2% (2)CWE-134Uncontrolled Format String
2% (2)CWE-94Failure to Control Generation of Code ('Code Injection')
2% (2)CWE-59Improper Link Resolution Before File Access ('Link Following')
1% (1)CWE-732Incorrect Permission Assignment for Critical Resource
1% (1)CWE-522Insufficiently Protected Credentials
1% (1)CWE-416Use After Free
1% (1)CWE-415Double Free
1% (1)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
1% (1)CWE-362Race Condition
1% (1)CWE-345Insufficient Verification of Data Authenticity
1% (1)CWE-255Credentials Management

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-47Buffer Overflow via Parameter Expansion

SAINT Exploits

DescriptionLink
Samba call_trans2open buffer overflowMore info here
Samba shared library upload and executionMore info here
Samba lsa_io_trans_names buffer overflowMore info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
75671HP NonStop Server Unspecified Remote Code Execution
74872Samba smbfs mount.cifs / umount.cifs RLIMIT_FSIZE Value Handling mtab Local C...
74871Samba mount.cifs Tool Share / Directory Name Newline Injection mtab Corruptio...
74072Samba SWAT Change Password Page user Field XSS
74071Samba SWAT Multiple Function CSRF
Hide | Show 20 More...
idDescription
71268Samba FD_SET Macro Memory Corruption
67994Samba sid_parse() Function SID Parsing Remote Overflow
65518Samba smbd process.c chain_reply Function SMB1 Packet Chaining Memory Corruption
65436Samba smbd sesssetup.c Session Setup AndX Security Blob Length Value Uninitia...
65435Samba smbd process.c chain_reply Function Session Setup AndX Request NULL Der...
62803Samba CAP_DAC_OVERRIDE Capability Flag File Permission Restriction Bypass
62186Samba mount.cifs Symlink Arbitrary File Access
62155Samba smbfs mount.cifs client/mount.cifs.c Crafted String mtab Corruption Loc...
62145Samba Guest Account Symlink Traversal Arbitrary File Access
59810Samba reply_nttrans Function Remote Overflow
59350Samba Web Administration Tool (SWAT) Malformed HTTP Request Saturation Remote...
58520Samba SUID mount.cifs --verbose Argument Arbitrary File Portion Disclosure
58519Samba smbd Crafted SMB Request Remote CPU Consumption DoS
57955Samba Unconfigured Home Directory Windows File Share Directory Access Restric...
55412Samba smbclient client/client.c Filename Specifiers Multiple Format Strings
55411Samba smbd/posix_acls.c acl_group_override Function Remote Access Control Lis...
51152Samba Crafted Connection Request Remote Root File System Access
50230Samba smbd *trans* Request Arbitrary Remote Memory Disclosure
47786Samba group_mapping.tdb Permission Weakness Privilege Escalation
45657Samba lib/util_sock.c receive_smb_raw() Function Crafted Packet Handling Over...

ExploitDB Exploits

idDescription
27778Samba nttrans Reply - Integer Overflow Vulnerability
17577SWAT Samba Web Administration Tool Cross-Site Request Forgery PoC
16320Samba "username map script" Command Execution

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0507-1 (update)
File : nvt/gb_suse_2012_0507_1.nasl
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0583-1 (update)
File : nvt/gb_suse_2012_0583_1.nasl
2012-09-10Name : Slackware Advisory SSA:2011-210-03 samba
File : nvt/esoft_slk_ssa_2011_210_03.nasl
2012-08-30Name : Fedora Update for evolution-mapi FEDORA-2012-7317
File : nvt/gb_fedora_2012_7317_evolution-mapi_fc17.nasl
2012-08-30Name : Fedora Update for openchange FEDORA-2012-7317
File : nvt/gb_fedora_2012_7317_openchange_fc17.nasl
Hide | Show 20 More...
idDescription
2012-08-30Name : Fedora Update for samba4 FEDORA-2012-7317
File : nvt/gb_fedora_2012_7317_samba4_fc17.nasl
2012-08-30Name : Fedora Update for samba FEDORA-2012-5793
File : nvt/gb_fedora_2012_5793_samba_fc17.nasl
2012-08-30Name : Fedora Update for samba FEDORA-2012-6981
File : nvt/gb_fedora_2012_6981_samba_fc17.nasl
2012-08-23Name : distcc Remote Code Execution Vulnerability
File : nvt/gb_distcc_cve_2004_2687.nasl
2012-08-10Name : Gentoo Security Advisory GLSA 201206-22 (Samba)
File : nvt/glsa_201206_22.nasl
2012-08-10Name : Gentoo Security Advisory GLSA 201206-29 (mount-cifs)
File : nvt/glsa_201206_29.nasl
2012-08-03Name : Mandriva Update for samba MDVSA-2012:055 (samba)
File : nvt/gb_mandriva_MDVSA_2012_055.nasl
2012-08-03Name : Mandriva Update for samba MDVSA-2012:067 (samba)
File : nvt/gb_mandriva_MDVSA_2012_067.nasl
2012-08-02Name : SuSE Update for samba openSUSE-SU-2012:0508-1 (samba)
File : nvt/gb_suse_2012_0508_1.nasl
2012-07-30Name : CentOS Update for libsmbclient CESA-2011:1219 centos5 x86_64
File : nvt/gb_CESA-2011_1219_libsmbclient_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for libsmbclient CESA-2012:0533 centos6
File : nvt/gb_CESA-2012_0533_libsmbclient_centos6.nasl
2012-07-30Name : CentOS Update for samba3x CESA-2012:0533 centos5
File : nvt/gb_CESA-2012_0533_samba3x_centos5.nasl
2012-07-30Name : CentOS Update for samba CESA-2011:1219 centos4 x86_64
File : nvt/gb_CESA-2011_1219_samba_centos4_x86_64.nasl
2012-07-30Name : CentOS Update for samba3x CESA-2011:1220 centos5 x86_64
File : nvt/gb_CESA-2011_1220_samba3x_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for libsmbclient CESA-2011:0305 centos5 x86_64
File : nvt/gb_CESA-2011_0305_libsmbclient_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for samba3x CESA-2011:0306 centos5 x86_64
File : nvt/gb_CESA-2011_0306_samba3x_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for samba CESA-2012:0332 centos4
File : nvt/gb_CESA-2012_0332_samba_centos4.nasl
2012-07-30Name : CentOS Update for libsmbclient CESA-2012:0465 centos5
File : nvt/gb_CESA-2012_0465_libsmbclient_centos5.nasl
2012-07-30Name : CentOS Update for libsmbclient CESA-2012:0465 centos6
File : nvt/gb_CESA-2012_0465_libsmbclient_centos6.nasl
2012-07-30Name : CentOS Update for samba3x CESA-2012:0466 centos5
File : nvt/gb_CESA-2012_0466_samba3x_centos5.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-B-0083Multiple Vulnerabilities in IBM Storwize V7000 Unified
Severity : Category I - VMSKEY : V0060983
2015-A-0042Samba Remote Code Execution Vulnerability
Severity : Category I - VMSKEY : V0058919
2014-B-0105Samba Remote Code Execution
Severity : Category I - VMSKEY : V0053637
2014-B-0067Multiple Vulnerabilities in Samba
Severity : Category I - VMSKEY : V0051853
2013-B-0131Multiple Vulnerabilities in Samba
Severity : Category I - VMSKEY : V0042303
Hide | Show 2 More...
idDescription
2013-B-0082Samba Denial of Service Vulnerability
Severity : Category I - VMSKEY : V0039910
2012-A-0020Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0031252

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-01-10SMB NT Trans Secondary unicode andx Param Count overflow attempt
RuleID : 6713 - Type : NETBIOS - Revision : 4
2014-01-10SMB NT Trans Secondary andx Param Count overflow attempt
RuleID : 6712 - Type : NETBIOS - Revision : 5
2014-01-10SMB-DS NT Trans Secondary unicode andx Param Count overflow attempt
RuleID : 6711 - Type : NETBIOS - Revision : 4
2014-01-10SMB-DS NT Trans Secondary andx Param Count overflow attempt
RuleID : 6710 - Type : NETBIOS - Revision : 4
2014-01-10SMB NT Trans Secondary unicode andx Param Count overflow attempt
RuleID : 6709 - Type : NETBIOS - Revision : 3
Hide | Show 20 More...
DateDescription
2014-01-10SMB NT Trans Secondary andx Param Count overflow attempt
RuleID : 6708 - Type : NETBIOS - Revision : 3
2014-01-10SMB NT Trans Secondary unicode Param Count overflow attempt
RuleID : 6707 - Type : NETBIOS - Revision : 5
2014-01-10SMB NT Trans Secondary Param Count overflow attempt
RuleID : 6706 - Type : NETBIOS - Revision : 5
2014-01-10SMB-DS NT Trans Secondary unicode Param Count overflow attempt
RuleID : 6705 - Type : NETBIOS - Revision : 4
2014-01-10SMB-DS NT Trans Secondary Param Count overflow attempt
RuleID : 6704 - Type : NETBIOS - Revision : 4
2014-01-10SMB NT Trans Secondary unicode Param Count overflow attempt
RuleID : 6703 - Type : NETBIOS - Revision : 3
2014-01-10SMB NT Trans Secondary Param Count overflow attempt
RuleID : 6702 - Type : NETBIOS - Revision : 2
2019-02-04Samba is_known_pipe arbitrary module load code execution attempt
RuleID : 49090-community - Type : SERVER-SAMBA - Revision : 1
2019-03-07Samba is_known_pipe arbitrary module load code execution attempt
RuleID : 49090 - Type : SERVER-SAMBA - Revision : 1
2018-07-03Possible Samba internal DNS forged response
RuleID : 46848 - Type : INDICATOR-COMPROMISE - Revision : 2
2014-01-10SMB NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt
RuleID : 4674 - Type : NETBIOS - Revision : 4
2014-01-10SMB NT Trans NT SET SECURITY DESC unicode DACL overflow attempt
RuleID : 4673 - Type : NETBIOS - Revision : 4
2014-01-10SMB NT Trans NT SET SECURITY DESC andx DACL overflow attempt
RuleID : 4672 - Type : NETBIOS - Revision : 4
2014-01-10SMB NT Trans NT SET SECURITY DESC DACL overflow attempt
RuleID : 4671 - Type : NETBIOS - Revision : 4
2014-01-10SMB-DS NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt
RuleID : 4670 - Type : NETBIOS - Revision : 3
2014-01-10SMB-DS NT Trans NT SET SECURITY DESC unicode DACL overflow attempt
RuleID : 4669 - Type : NETBIOS - Revision : 3
2014-01-10SMB-DS NT Trans NT SET SECURITY DESC andx DACL overflow attempt
RuleID : 4668 - Type : NETBIOS - Revision : 3
2014-01-10SMB-DS NT Trans NT SET SECURITY DESC DACL overflow attempt
RuleID : 4667 - Type : NETBIOS - Revision : 3
2014-01-10SMB NT Trans NT SET SECURITY DESC unicode andx DACL overflow attempt
RuleID : 4666 - Type : NETBIOS - Revision : 2
2014-01-10SMB NT Trans NT SET SECURITY DESC unicode DACL overflow attempt
RuleID : 4665 - Type : NETBIOS - Revision : 2

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-10Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10917_184R1.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-e423e8743f.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing one or more security updates.
File : fedora_2018-bc22d6c7bc.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-c2a93f8e1b.nasl - Type : ACT_GATHER_INFO
2018-12-20Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1126.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-12-17Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-3056.nasl - Type : ACT_GATHER_INFO
2018-12-17Name : The remote Debian host is missing a security update.
File : debian_DLA-1607.nasl - Type : ACT_GATHER_INFO
2018-11-29Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-333-01.nasl - Type : ACT_GATHER_INFO
2018-11-29Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4345.nasl - Type : ACT_GATHER_INFO
2018-11-28Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_54976998f24811e881e2005056a311d1.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-2789.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-2791.nasl - Type : ACT_GATHER_INFO
2018-09-18Name : The remote EulerOS Virtualization host is missing multiple security updates.
File : EulerOS_SA-2018-1238.nasl - Type : ACT_GATHER_INFO
2018-08-22Name : The remote Fedora host is missing a security update.
File : fedora_2018-8e4d871867.nasl - Type : ACT_GATHER_INFO
2018-08-20Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-229-02.nasl - Type : ACT_GATHER_INFO
2018-08-15Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4271.nasl - Type : ACT_GATHER_INFO
2018-08-15Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_c4e9a4279fc211e8802a000c29a1e3ec.nasl - Type : ACT_GATHER_INFO
2018-06-22Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-1860.nasl - Type : ACT_GATHER_INFO
2018-06-22Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-1883.nasl - Type : ACT_GATHER_INFO
2018-05-23Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201805-07.nasl - Type : ACT_GATHER_INFO
2018-03-28Name : The remote Debian host is missing a security update.
File : debian_DLA-1320.nasl - Type : ACT_GATHER_INFO
2018-03-21Name : The remote Fedora host is missing a security update.
File : fedora_2018-7d0acd608b.nasl - Type : ACT_GATHER_INFO
2018-03-15Name : The remote Fedora host is missing one or more security updates.
File : fedora_2018-c5c651ac44.nasl - Type : ACT_GATHER_INFO
2018-03-14Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_fb26f78a26a911e8a1c200505689d4ae.nasl - Type : ACT_GATHER_INFO
2018-03-14Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-072-02.nasl - Type : ACT_GATHER_INFO