10 - CVE-2012-1182

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2012-1182	First vendor Publication	2012-04-10
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1182

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-189	Numeric Errors (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:17426

Oval ID:	oval:org.mitre.oval:def:17426
Title:	USN-1423-1 -- samba vulnerability
Description:	Samba could be made to run programs as the administrator if it received specially crafted network traffic.
Family:	unix	Class:	patch
Reference(s):	USN-1423-1 CVE-2012-1182	Version:	7
Platform(s):	Ubuntu 11.10 Ubuntu 11.04 Ubuntu 10.04 Ubuntu 8.04	Product(s):	samba
Definition Synopsis:
Release section Ubuntu 11.10 is installed AND samba DPKG is earlier than 2:3.5.11~dfsg-1ubuntu2.2 AND Release section Ubuntu 11.04 is installed AND samba DPKG is earlier than 2:3.5.8~dfsg-1ubuntu2.4 AND Release section Ubuntu 10.04 is installed AND samba DPKG is earlier than 2:3.4.7~dfsg-1ubuntu3.9 AND Release section Ubuntu 8.04 is installed AND samba DPKG is earlier than 3.0.28a-1ubuntu4.18

Definition Id: oval:org.mitre.oval:def:19174

Oval ID:	oval:org.mitre.oval:def:19174
Title:	HP-UX CIFS Server (Samba), Remote Execution of Arbitrary Code, Elevation of Privileges
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2012-1182	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02789 platforms HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests CIFS-Development.CIFS-PRG version is less than A.03.01.05 AND CIFS-Server.CIFS-ADMIN version is less than A.03.01.05 AND CIFS-Server.CIFS-DOC version is less than A.03.01.05 AND CIFS-Server.CIFS-LIB version is less than A.03.01.05 AND CIFS-Server.CIFS-RUN version is less than A.03.01.05 AND CIFS-Server.CIFS-UTIL version is less than A.03.01.05 OR Criteria meets HP Security Bulletin HPSBUX02789 platforms HP Release B.11.11 AND HP Release B.11.23 AND filesets tests CIFS-Development.CIFS-PRG version is less than A.02.04.06 AND CIFS-Server.CIFS-ADMIN version is less than A.02.04.06 AND CIFS-Server.CIFS-DOC version is less than A.02.04.06 AND CIFS-Server.CIFS-LIB version is less than A.02.04.06 AND CIFS-Server.CIFS-MAN version is less than A.02.04.06 AND CIFS-Server.CIFS-RUN version is less than A.02.04.06 AND CIFS-Server.CIFS-UTIL version is less than A.02.04.06 OR Criteria meets HP Security Bulletin HPSBUX02789 HP-UX B.11.31 AND filesets tests CIFS-CFSM.CFSM-KRN version is less than A.02.04.06 AND CIFS-CFSM.CFSM-MAN version is less than A.02.04.06 AND CIFS-CFSM.CFSM-RUN version is less than A.02.04.06 AND CIFS-Development.CIFS-PRG version is less than A.02.04.06 AND CIFS-Server.CIFS-ADMIN version is less than A.02.04.06 AND CIFS-Server.CIFS-DOC version is less than A.02.04.06 AND CIFS-Server.CIFS-LIB version is less than A.02.04.06 AND CIFS-Server.CIFS-MAN version is less than A.02.04.06 AND CIFS-Server.CIFS-RUN version is less than A.02.04.06 AND CIFS-Server.CIFS-UTIL version is less than A.02.04.06 OR Criteria meets HP Security Bulletin HPSBUX02789 HP Release B.11.11 AND filesets tests CIFS-Development.CIFS-PRG version is less than A.02.03.06 AND CIFS-Server.CIFS-ADMIN version is less than A.02.03.06 AND CIFS-Server.CIFS-DOC version is less than A.02.03.06 AND CIFS-Server.CIFS-LIB version is less than A.02.03.06 AND CIFS-Server.CIFS-MAN version is less than A.02.03.06 AND CIFS-Server.CIFS-RUN version is less than A.02.03.06 AND CIFS-Server.CIFS-UTIL version is less than A.02.03.06

Definition Id: oval:org.mitre.oval:def:19714

Oval ID:	oval:org.mitre.oval:def:19714
Title:	DSA-2450-1 samba - privilege escalation
Description:	It was discovered that Samba, the SMB/CIFS file, print, and login server, contained a flaw in the remote procedure call (RPC) code which allowed remote code execution as the super user from an unauthenticated connection.
Family:	unix	Class:	patch
Reference(s):	DSA-2450-1 CVE-2012-1182	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	samba
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND samba DPKG is earlier than 2:3.5.6~dfsg-3squeeze7

Definition Id: oval:org.mitre.oval:def:21003

Oval ID:	oval:org.mitre.oval:def:21003
Title:	RHSA-2013:0506: samba4 security, bug fix and enhancement update (Moderate)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	RHSA-2013:0506-02 CESA-2013:0506 CVE-2012-1182	Version:	4
Platform(s):	Red Hat Enterprise Linux 6 CentOS Linux 6	Product(s):	samba4
Definition Synopsis:
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND CentOS Linux 6.x Packages section samba4-winbind is earlier than 0:4.0.0-55.el6.rc4 AND samba4-python is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind-krb5-locator is earlier than 0:4.0.0-55.el6.rc4 AND samba4-pidl is earlier than 0:4.0.0-55.el6.rc4 AND samba4-dc is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind-clients is earlier than 0:4.0.0-55.el6.rc4 AND samba4-swat is earlier than 0:4.0.0-55.el6.rc4 AND samba4-dc-libs is earlier than 0:4.0.0-55.el6.rc4 AND samba4-client is earlier than 0:4.0.0-55.el6.rc4 AND samba4-libs is earlier than 0:4.0.0-55.el6.rc4 AND samba4-devel is earlier than 0:4.0.0-55.el6.rc4 AND samba4-common is earlier than 0:4.0.0-55.el6.rc4 AND samba4 is earlier than 0:4.0.0-55.el6.rc4 AND samba4-test is earlier than 0:4.0.0-55.el6.rc4

Definition Id: oval:org.mitre.oval:def:21042

Oval ID:	oval:org.mitre.oval:def:21042
Title:	RHSA-2013:0515: openchange security, bug fix and enhancement update (Moderate)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	RHSA-2013:0515-02 CESA-2013:0515 CVE-2012-1182	Version:	4
Platform(s):	Red Hat Enterprise Linux 6 CentOS Linux 6	Product(s):	evolution-mapi openchange
Definition Synopsis:
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND CentOS Linux 6.x Packages section openchange is earlier than 0:1.0-4.el6 AND openchange-devel is earlier than 0:1.0-4.el6 AND openchange-client is earlier than 0:1.0-4.el6 AND openchange-devel-docs is earlier than 0:1.0-4.el6 AND evolution-mapi is earlier than 0:0.28.3-12.el6 AND evolution-mapi-devel is earlier than 0:0.28.3-12.el6

Definition Id: oval:org.mitre.oval:def:21345

Oval ID:	oval:org.mitre.oval:def:21345
Title:	RHSA-2012:0465: samba security update (Critical)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0465-02 CESA-2012:0465 CVE-2012-1182	Version:	4
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 CentOS Linux 5 CentOS Linux 6	Product(s):	samba
Definition Synopsis:
Operation system section Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section samba-client is earlier than 0:3.0.33-3.39.el5_8 AND samba is earlier than 0:3.0.33-3.39.el5_8 AND samba-common is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient-devel is earlier than 0:3.0.33-3.39.el5_8 AND samba-swat is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient is earlier than 0:3.0.33-3.39.el5_8 AND Operation system section Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND The operating system installed on the system is CentOS Linux 6.x Packages section samba-client is earlier than 0:3.5.10-115.el6_2 AND samba-domainjoin-gui is earlier than 0:3.5.10-115.el6_2 AND samba is earlier than 0:3.5.10-115.el6_2 AND samba-winbind is earlier than 0:3.5.10-115.el6_2 AND samba-common is earlier than 0:3.5.10-115.el6_2 AND samba-doc is earlier than 0:3.5.10-115.el6_2 AND libsmbclient-devel is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-clients is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-devel is earlier than 0:3.5.10-115.el6_2 AND libsmbclient is earlier than 0:3.5.10-115.el6_2 AND samba-swat is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-krb5-locator is earlier than 0:3.5.10-115.el6_2

Definition Id: oval:org.mitre.oval:def:21396

Oval ID:	oval:org.mitre.oval:def:21396
Title:	RHSA-2012:0466: samba3x security update (Critical)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:0466-02 CESA-2012:0466 CVE-2012-1182	Version:	4
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	samba3x
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section samba3x-common is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-swat is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-domainjoin-gui is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-client is earlier than 0:3.5.10-0.108.el5_8 AND samba3x is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-winbind is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-winbind-devel is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-doc is earlier than 0:3.5.10-0.108.el5_8

Definition Id: oval:org.mitre.oval:def:23143

Oval ID:	oval:org.mitre.oval:def:23143
Title:	ELSA-2012:0466: samba3x security update (Critical)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0466-02 CVE-2012-1182	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	samba3x
Definition Synopsis:
Oracle Linux 5.x rpm test samba3x-common is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-swat is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-domainjoin-gui is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-client is earlier than 0:3.5.10-0.108.el5_8 AND samba3x is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-winbind is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-winbind-devel is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-doc is earlier than 0:3.5.10-0.108.el5_8

Definition Id: oval:org.mitre.oval:def:23318

Oval ID:	oval:org.mitre.oval:def:23318
Title:	DEPRECATED: ELSA-2012:0465: samba security update (Critical)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0465-02 CVE-2012-1182	Version:	7
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	samba
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test samba-client is earlier than 0:3.0.33-3.39.el5_8 AND samba is earlier than 0:3.0.33-3.39.el5_8 AND samba-common is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient-devel is earlier than 0:3.0.33-3.39.el5_8 AND samba-swat is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient is earlier than 0:3.0.33-3.39.el5_8 OR rpm test Oracle Linux 6.x AND rpm test samba-client is earlier than 0:3.5.10-115.el6_2 AND samba-domainjoin-gui is earlier than 0:3.5.10-115.el6_2 AND samba is earlier than 0:3.5.10-115.el6_2 AND samba-winbind is earlier than 0:3.5.10-115.el6_2 AND samba-common is earlier than 0:3.5.10-115.el6_2 AND samba-doc is earlier than 0:3.5.10-115.el6_2 AND libsmbclient-devel is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-clients is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-devel is earlier than 0:3.5.10-115.el6_2 AND libsmbclient is earlier than 0:3.5.10-115.el6_2 AND samba-swat is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-krb5-locator is earlier than 0:3.5.10-115.el6_2

Definition Id: oval:org.mitre.oval:def:23647

Oval ID:	oval:org.mitre.oval:def:23647
Title:	ELSA-2012:0465: samba security update (Critical)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0465-02 CVE-2012-1182	Version:	6
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	samba
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test samba-client is earlier than 0:3.0.33-3.39.el5_8 AND samba is earlier than 0:3.0.33-3.39.el5_8 AND samba-common is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient-devel is earlier than 0:3.0.33-3.39.el5_8 AND samba-swat is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient is earlier than 0:3.0.33-3.39.el5_8 OR rpm test Oracle Linux 6.x AND rpm test samba-client is earlier than 0:3.5.10-115.el6_2 AND samba-domainjoin-gui is earlier than 0:3.5.10-115.el6_2 AND samba is earlier than 0:3.5.10-115.el6_2 AND samba-winbind is earlier than 0:3.5.10-115.el6_2 AND samba-common is earlier than 0:3.5.10-115.el6_2 AND samba-doc is earlier than 0:3.5.10-115.el6_2 AND libsmbclient-devel is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-clients is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-devel is earlier than 0:3.5.10-115.el6_2 AND libsmbclient is earlier than 0:3.5.10-115.el6_2 AND samba-swat is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-krb5-locator is earlier than 0:3.5.10-115.el6_2

Definition Id: oval:org.mitre.oval:def:23742

Oval ID:	oval:org.mitre.oval:def:23742
Title:	ELSA-2013:0506: samba4 security, bug fix and enhancement update (Moderate)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0506-02 CVE-2012-1182	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	samba4
Definition Synopsis:
Oracle Linux 6.x rpm test samba4-winbind is earlier than 0:4.0.0-55.el6.rc4 AND samba4-python is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind-krb5-locator is earlier than 0:4.0.0-55.el6.rc4 AND samba4-pidl is earlier than 0:4.0.0-55.el6.rc4 AND samba4-dc is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind-clients is earlier than 0:4.0.0-55.el6.rc4 AND samba4-swat is earlier than 0:4.0.0-55.el6.rc4 AND samba4-dc-libs is earlier than 0:4.0.0-55.el6.rc4 AND samba4-client is earlier than 0:4.0.0-55.el6.rc4 AND samba4-libs is earlier than 0:4.0.0-55.el6.rc4 AND samba4-devel is earlier than 0:4.0.0-55.el6.rc4 AND samba4-common is earlier than 0:4.0.0-55.el6.rc4 AND samba4 is earlier than 0:4.0.0-55.el6.rc4 AND samba4-test is earlier than 0:4.0.0-55.el6.rc4

Definition Id: oval:org.mitre.oval:def:24092

Oval ID:	oval:org.mitre.oval:def:24092
Title:	ELSA-2013:0515: openchange security, bug fix and enhancement update (Moderate)
Description:	The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0515-02 CVE-2012-1182	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	evolution-mapi openchange
Definition Synopsis:
Oracle Linux 6.x rpm test openchange is earlier than 0:1.0-4.el6 AND openchange-devel is earlier than 0:1.0-4.el6 AND openchange-client is earlier than 0:1.0-4.el6 AND openchange-devel-docs is earlier than 0:1.0-4.el6 AND evolution-mapi is earlier than 0:0.28.3-12.el6 AND evolution-mapi-devel is earlier than 0:0.28.3-12.el6

Definition Id: oval:org.mitre.oval:def:26936

Oval ID:	oval:org.mitre.oval:def:26936
Title:	DEPRECATED: ELSA-2013-0506 -- samba4 security, bug fix and enhancement update (moderate)
Description:	[4.0.0-55.rc4] - Fix dependencies of samba4-test package. - related: #896142
Family:	unix	Class:	patch
Reference(s):	ELSA-2013-0506 CVE-2012-1182	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	samba4
Definition Synopsis:
Oracle Linux 6.x Packages match section samba4 is earlier than 0:4.0.0-55.el6.rc4 AND samba4-client is earlier than 0:4.0.0-55.el6.rc4 AND samba4-common is earlier than 0:4.0.0-55.el6.rc4 AND samba4-dc is earlier than 0:4.0.0-55.el6.rc4 AND samba4-dc-libs is earlier than 0:4.0.0-55.el6.rc4 AND samba4-devel is earlier than 0:4.0.0-55.el6.rc4 AND samba4-libs is earlier than 0:4.0.0-55.el6.rc4 AND samba4-pidl is earlier than 0:4.0.0-55.el6.rc4 AND samba4-python is earlier than 0:4.0.0-55.el6.rc4 AND samba4-swat is earlier than 0:4.0.0-55.el6.rc4 AND samba4-test is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind-clients is earlier than 0:4.0.0-55.el6.rc4 AND samba4-winbind-krb5-locator is earlier than 0:4.0.0-55.el6.rc4

Definition Id: oval:org.mitre.oval:def:27521

Oval ID:	oval:org.mitre.oval:def:27521
Title:	DEPRECATED: ELSA-2012-0465 -- samba security update (critical)
Description:	[3.5.10-115] - Security Release, fixes CVE-2012-1182 - resolves: #804644
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-0465 CVE-2012-1182	Version:	4
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	samba
Definition Synopsis:
Oracle Linux 5 release section Oracle Linux 5.x Packages match section samba is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient is earlier than 0:3.0.33-3.39.el5_8 AND libsmbclient-devel is earlier than 0:3.0.33-3.39.el5_8 AND samba-client is earlier than 0:3.0.33-3.39.el5_8 AND samba-common is earlier than 0:3.0.33-3.39.el5_8 AND samba-swat is earlier than 0:3.0.33-3.39.el5_8 AND Oracle Linux 6 release section Oracle Linux 6.x Packages match section samba is earlier than 0:3.5.10-115.el6_2 AND libsmbclient is earlier than 0:3.5.10-115.el6_2 AND libsmbclient-devel is earlier than 0:3.5.10-115.el6_2 AND samba-client is earlier than 0:3.5.10-115.el6_2 AND samba-common is earlier than 0:3.5.10-115.el6_2 AND samba-doc is earlier than 0:3.5.10-115.el6_2 AND samba-domainjoin-gui is earlier than 0:3.5.10-115.el6_2 AND samba-swat is earlier than 0:3.5.10-115.el6_2 AND samba-winbind is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-clients is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-devel is earlier than 0:3.5.10-115.el6_2 AND samba-winbind-krb5-locator is earlier than 0:3.5.10-115.el6_2

Definition Id: oval:org.mitre.oval:def:27693

Oval ID:	oval:org.mitre.oval:def:27693
Title:	DEPRECATED: ELSA-2013-0515 -- openchange security, bug fix and enhancement update (moderate)
Description:	A flaw was found in the Samba suite's Perl-based DCE/RPC IDL (PIDL) compiler. As OpenChange uses code generated by PIDL, this could have resulted in buffer overflows in the way OpenChange handles RPC calls. With this update, the code has been generated with an updated version of PIDL to correct this issue.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013-0515 CVE-2012-1182	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	evolution-mapi openchange
Definition Synopsis:
Oracle Linux 6.x Packages match section evolution-mapi is earlier than 0:0.28.3-12.el6 AND openchange is earlier than 0:1.0-4.el6 AND evolution-mapi-devel is earlier than 0:0.28.3-12.el6 AND openchange-client is earlier than 0:1.0-4.el6 AND openchange-devel is earlier than 0:1.0-4.el6 AND openchange-devel-docs is earlier than 0:1.0-4.el6

Definition Id: oval:org.mitre.oval:def:27814

Oval ID:	oval:org.mitre.oval:def:27814
Title:	DEPRECATED: ELSA-2012-0466 -- samba3x security update (critical)
Description:	[3.5.10-0.108] - Security Release, fixes CVE-2012-1182 - resolves: #804650
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-0466 CVE-2012-1182	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	samba3x
Definition Synopsis:
Oracle Linux 5.x Packages match section samba3x is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-client is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-common is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-doc is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-domainjoin-gui is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-swat is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-winbind is earlier than 0:3.5.10-0.108.el5_8 AND samba3x-winbind-devel is earlier than 0:3.5.10-0.108.el5_8

CPE : Common Platform Enumeration

Type	Description	Count
Application	Samba cpe:2.3:a:samba:samba:3.6.3:::::::* cpe:2.3:a:samba:samba:3.6.2:::::::* cpe:2.3:a:samba:samba:3.6.1:::::::* cpe:2.3:a:samba:samba:3.6.0:::::::* cpe:2.3:a:samba:samba:3.5.9:::::::* cpe:2.3:a:samba:samba:3.5.8:::::::* cpe:2.3:a:samba:samba:3.5.7:::::::* cpe:2.3:a:samba:samba:3.5.6:::::::* cpe:2.3:a:samba:samba:3.5.5:::::::* cpe:2.3:a:samba:samba:3.5.4:::::::* cpe:2.3:a:samba:samba:3.5.3:::::::* cpe:2.3:a:samba:samba:3.5.2:::::::* cpe:2.3:a:samba:samba:3.5.13:::::::* cpe:2.3:a:samba:samba:3.5.12:::::::* cpe:2.3:a:samba:samba:3.5.11:::::::* cpe:2.3:a:samba:samba:3.5.10:::::::* cpe:2.3:a:samba:samba:3.5.1:::::::* cpe:2.3:a:samba:samba:3.5.0:::::::* cpe:2.3:a:samba:samba:3.4.9:::::::* cpe:2.3:a:samba:samba:3.4.8:::::::* cpe:2.3:a:samba:samba:3.4.7:::::::* cpe:2.3:a:samba:samba:3.4.6:::::::* cpe:2.3:a:samba:samba:3.4.5:::::::* cpe:2.3:a:samba:samba:3.4.4:::::::* cpe:2.3:a:samba:samba:3.4.3:::::::* cpe:2.3:a:samba:samba:3.4.2:::::::* cpe:2.3:a:samba:samba:3.4.15:::::::* cpe:2.3:a:samba:samba:3.4.14:::::::* cpe:2.3:a:samba:samba:3.4.13:::::::* cpe:2.3:a:samba:samba:3.4.12:::::::* cpe:2.3:a:samba:samba:3.4.11:::::::* cpe:2.3:a:samba:samba:3.4.10:::::::* cpe:2.3:a:samba:samba:3.4.1:::::::* cpe:2.3:a:samba:samba:3.4.0:::::::* cpe:2.3:a:samba:samba:3.4:::::::* cpe:2.3:a:samba:samba:3.3.9:::::::* cpe:2.3:a:samba:samba:3.3.8:::::::* cpe:2.3:a:samba:samba:3.3.7:::::::* cpe:2.3:a:samba:samba:3.3.6:::::::* cpe:2.3:a:samba:samba:3.3.5:::::::* cpe:2.3:a:samba:samba:3.3.4:::::::* cpe:2.3:a:samba:samba:3.3.3:::::::* cpe:2.3:a:samba:samba:3.3.2:::::::* cpe:2.3:a:samba:samba:3.3.16:::::::* cpe:2.3:a:samba:samba:3.3.15:::::::* cpe:2.3:a:samba:samba:3.3.14:::::::* cpe:2.3:a:samba:samba:3.3.13:::::::* cpe:2.3:a:samba:samba:3.3.12:::::::* cpe:2.3:a:samba:samba:3.3.11:::::::* cpe:2.3:a:samba:samba:3.3.10:::::::* cpe:2.3:a:samba:samba:3.3.1:::::::* cpe:2.3:a:samba:samba:3.3.0:::::::* cpe:2.3:a:samba:samba:3.3:::::::* cpe:2.3:a:samba:samba:3.2.9:::::::* cpe:2.3:a:samba:samba:3.2.8:::::::* cpe:2.3:a:samba:samba:3.2.7:::::::* cpe:2.3:a:samba:samba:3.2.6:::::::* cpe:2.3:a:samba:samba:3.2.5:::::::* cpe:2.3:a:samba:samba:3.2.4:::::::* cpe:2.3:a:samba:samba:3.2.3:::::::* cpe:2.3:a:samba:samba:3.2.2:::::::* cpe:2.3:a:samba:samba:3.2.15:::::::* cpe:2.3:a:samba:samba:3.2.14:::::::* cpe:2.3:a:samba:samba:3.2.13:::::::* cpe:2.3:a:samba:samba:3.2.12:::::::* cpe:2.3:a:samba:samba:3.2.11:::::::* cpe:2.3:a:samba:samba:3.2.10:::::::* cpe:2.3:a:samba:samba:3.2.1:::::::* cpe:2.3:a:samba:samba:3.2.0:::::::* cpe:2.3:a:samba:samba:3.2:::::::* cpe:2.3:a:samba:samba:3.1.0:::::::* cpe:2.3:a:samba:samba:3.0.9:::::::* cpe:2.3:a:samba:samba:3.0.8:::::::* cpe:2.3:a:samba:samba:3.0.7:::::::* cpe:2.3:a:samba:samba:3.0.6:::::::* cpe:2.3:a:samba:samba:3.0.5:::::::* cpe:2.3:a:samba:samba:3.0.4:rc1:::::: cpe:2.3:a:samba:samba:3.0.4:-:::::: cpe:2.3:a:samba:samba:3.0.37:::::::* cpe:2.3:a:samba:samba:3.0.36:::::::* cpe:2.3:a:samba:samba:3.0.35:::::::* cpe:2.3:a:samba:samba:3.0.34:::::::* cpe:2.3:a:samba:samba:3.0.33:::::::* cpe:2.3:a:samba:samba:3.0.32:::::::* cpe:2.3:a:samba:samba:3.0.31:::::::* cpe:2.3:a:samba:samba:3.0.30:::::::* cpe:2.3:a:samba:samba:3.0.3:::::::* cpe:2.3:a:samba:samba:3.0.2a:::::::* cpe:2.3:a:samba:samba:3.0.29:::::::* cpe:2.3:a:samba:samba:3.0.28a:::::::* cpe:2.3:a:samba:samba:3.0.28:-:::::: cpe:2.3:a:samba:samba:3.0.28:a:::::: cpe:2.3:a:samba:samba:3.0.27a:::::::* cpe:2.3:a:samba:samba:3.0.27:-:::::: cpe:2.3:a:samba:samba:3.0.27:a:::::: cpe:2.3:a:samba:samba:3.0.26a:::::::* cpe:2.3:a:samba:samba:3.0.26:a:::::: cpe:2.3:a:samba:samba:3.0.26:-:::::: cpe:2.3:a:samba:samba:3.0.25c:::::::* cpe:2.3:a:samba:samba:3.0.25b:::::::* cpe:2.3:a:samba:samba:3.0.25a:::::::* cpe:2.3:a:samba:samba:3.0.25:rc2:::::: cpe:2.3:a:samba:samba:3.0.25:rc3:::::: cpe:2.3:a:samba:samba:3.0.25:pre1:::::: cpe:2.3:a:samba:samba:3.0.25:rc1:::::: cpe:2.3:a:samba:samba:3.0.25:-:::::: cpe:2.3:a:samba:samba:3.0.25:a:::::: cpe:2.3:a:samba:samba:3.0.25:pre2:::::: cpe:2.3:a:samba:samba:3.0.25:c:::::: cpe:2.3:a:samba:samba:3.0.25:b:::::: cpe:2.3:a:samba:samba:3.0.24:::::::* cpe:2.3:a:samba:samba:3.0.23d:::::::* cpe:2.3:a:samba:samba:3.0.23c:::::::* cpe:2.3:a:samba:samba:3.0.23b:::::::* cpe:2.3:a:samba:samba:3.0.23a:::::::* cpe:2.3:a:samba:samba:3.0.23:-:::::: cpe:2.3:a:samba:samba:3.0.23:a:::::: cpe:2.3:a:samba:samba:3.0.23:d:::::: cpe:2.3:a:samba:samba:3.0.23:c:::::: cpe:2.3:a:samba:samba:3.0.23:b:::::: cpe:2.3:a:samba:samba:3.0.22:::::::* cpe:2.3:a:samba:samba:3.0.21c:::::::* cpe:2.3:a:samba:samba:3.0.21b:::::::* cpe:2.3:a:samba:samba:3.0.21a:::::::* cpe:2.3:a:samba:samba:3.0.21:-:::::: cpe:2.3:a:samba:samba:3.0.21:a:::::: cpe:2.3:a:samba:samba:3.0.21:c:::::: cpe:2.3:a:samba:samba:3.0.21:b:::::: cpe:2.3:a:samba:samba:3.0.20b:::::::* cpe:2.3:a:samba:samba:3.0.20a:::::::* cpe:2.3:a:samba:samba:3.0.20:b:::::: cpe:2.3:a:samba:samba:3.0.20:-:::::: cpe:2.3:a:samba:samba:3.0.20:a:::::: cpe:2.3:a:samba:samba:3.0.2:a:::::: cpe:2.3:a:samba:samba:3.0.2:-:::::: cpe:2.3:a:samba:samba:3.0.19:::::::* cpe:2.3:a:samba:samba:3.0.18:::::::* cpe:2.3:a:samba:samba:3.0.17:::::::* cpe:2.3:a:samba:samba:3.0.16:::::::* cpe:2.3:a:samba:samba:3.0.15:::::::* cpe:2.3:a:samba:samba:3.0.14a:::::::* cpe:2.3:a:samba:samba:3.0.14:-:::::: cpe:2.3:a:samba:samba:3.0.14:a:::::: cpe:2.3:a:samba:samba:3.0.13:::::::* cpe:2.3:a:samba:samba:3.0.12:::::::* cpe:2.3:a:samba:samba:3.0.11:::::::* cpe:2.3:a:samba:samba:3.0.10:::::::* cpe:2.3:a:samba:samba:3.0.1:::::::* cpe:2.3:a:samba:samba:3.0.0:::::::* cpe:2.3:a:samba:samba:2.2a:::::::* cpe:2.3:a:samba:samba:2.2.9:::::::* cpe:2.3:a:samba:samba:2.2.8a:::::::* cpe:2.3:a:samba:samba:2.2.8:-:::::: cpe:2.3:a:samba:samba:2.2.8:a:::::: cpe:2.3:a:samba:samba:2.2.7a:::::::* cpe:2.3:a:samba:samba:2.2.7:-:::::: cpe:2.3:a:samba:samba:2.2.7:a:::::: cpe:2.3:a:samba:samba:2.2.6:::::::* cpe:2.3:a:samba:samba:2.2.5:::::::* cpe:2.3:a:samba:samba:2.2.4:::::::* cpe:2.3:a:samba:samba:2.2.3a:::::::* cpe:2.3:a:samba:samba:2.2.3:-:::::: cpe:2.3:a:samba:samba:2.2.3:a:::::: cpe:2.3:a:samba:samba:2.2.2:::::::* cpe:2.3:a:samba:samba:2.2.1a:::::::* cpe:2.3:a:samba:samba:2.2.12:::::::* cpe:2.3:a:samba:samba:2.2.11:::::::* cpe:2.3:a:samba:samba:2.2.10:::::::* cpe:2.3:a:samba:samba:2.2.1:-:::::: cpe:2.3:a:samba:samba:2.2.1:a:::::: cpe:2.3:a:samba:samba:2.2.0a:::::::* cpe:2.3:a:samba:samba:2.2.0:-:::::: cpe:2.3:a:samba:samba:2.2.0:a:::::: cpe:2.3:a:samba:samba:2.2:a:::::: cpe:2.3:a:samba:samba:2.18.3:::::::* cpe:2.3:a:samba:samba:2.0.9:::::::* cpe:2.3:a:samba:samba:2.0.8:::::::* cpe:2.3:a:samba:samba:2.0.7:::::::* cpe:2.3:a:samba:samba:2.0.6:::::::* cpe:2.3:a:samba:samba:2.0.5a:::::::* cpe:2.3:a:samba:samba:2.0.5:-:::::: cpe:2.3:a:samba:samba:2.0.5:a:::::: cpe:2.3:a:samba:samba:2.0.4:::::::* cpe:2.3:a:samba:samba:2.0.3:::::::* cpe:2.3:a:samba:samba:2.0.2:::::::* cpe:2.3:a:samba:samba:2.0.10:::::::* cpe:2.3:a:samba:samba:2.0.1:::::::* cpe:2.3:a:samba:samba:2.0.0:::::::* cpe:2.3:a:samba:samba:2.0:::::::* cpe:2.3:a:samba:samba:1.9.18:p10:::::: cpe:2.3:a:samba:samba:1.9.18:p6:::::: cpe:2.3:a:samba:samba:1.9.18:p8:::::: cpe:2.3:a:samba:samba:1.9.18:p1:::::: cpe:2.3:a:samba:samba:1.9.18:p4:::::: cpe:2.3:a:samba:samba:1.9.18:p2:::::: cpe:2.3:a:samba:samba:1.9.18:p3:::::: cpe:2.3:a:samba:samba:1.9.18:p7:::::: cpe:2.3:a:samba:samba:1.9.18:p5:::::: cpe:2.3:a:samba:samba:1.9.18:-:::::: cpe:2.3:a:samba:samba:1.9.17:p4:::::: cpe:2.3:a:samba:samba:1.9.17:p1:::::: cpe:2.3:a:samba:samba:1.9.17:p5:::::: cpe:2.3:a:samba:samba:1.9.17:::::::* cpe:2.3:a:samba:samba:1.9.17:p2:::::: cpe:2.3:a:samba:samba:1.9.17:p3:::::: cpe:2.3:a:samba:samba:::::::: cpe:2.3:a:samba:samba:-:::::::*	207

OpenVAS Exploits

Date	Description
2012-12-13	Name : SuSE Update for update openSUSE-SU-2012:0507-1 (update) File : nvt/gb_suse_2012_0507_1.nasl
2012-08-30	Name : Fedora Update for samba FEDORA-2012-5793 File : nvt/gb_fedora_2012_5793_samba_fc17.nasl
2012-08-10	Name : Gentoo Security Advisory GLSA 201206-22 (Samba) File : nvt/glsa_201206_22.nasl
2012-08-03	Name : Mandriva Update for samba MDVSA-2012:055 (samba) File : nvt/gb_mandriva_MDVSA_2012_055.nasl
2012-08-02	Name : SuSE Update for samba openSUSE-SU-2012:0508-1 (samba) File : nvt/gb_suse_2012_0508_1.nasl
2012-07-30	Name : CentOS Update for libsmbclient CESA-2012:0465 centos5 File : nvt/gb_CESA-2012_0465_libsmbclient_centos5.nasl
2012-07-30	Name : CentOS Update for libsmbclient CESA-2012:0465 centos6 File : nvt/gb_CESA-2012_0465_libsmbclient_centos6.nasl
2012-07-30	Name : CentOS Update for samba3x CESA-2012:0466 centos5 File : nvt/gb_CESA-2012_0466_samba3x_centos5.nasl
2012-05-18	Name : Mac OS X Multiple Vulnerabilities (2012-002) File : nvt/gb_macosx_su12-002.nasl
2012-05-17	Name : Fedora Update for samba4 FEDORA-2012-6382 File : nvt/gb_fedora_2012_6382_samba4_fc16.nasl
2012-05-04	Name : Fedora Update for samba4 FEDORA-2012-6349 File : nvt/gb_fedora_2012_6349_samba4_fc15.nasl
2012-05-04	Name : Fedora Update for samba FEDORA-2012-7006 File : nvt/gb_fedora_2012_7006_samba_fc16.nasl
2012-05-04	Name : Fedora Update for samba FEDORA-2012-6999 File : nvt/gb_fedora_2012_6999_samba_fc15.nasl
2012-04-30	Name : Debian Security Advisory DSA 2450-1 (samba) File : nvt/deb_2450_1.nasl
2012-04-30	Name : FreeBSD Ports: samba34 File : nvt/freebsd_samba342.nasl
2012-04-23	Name : Fedora Update for samba FEDORA-2012-5805 File : nvt/gb_fedora_2012_5805_samba_fc15.nasl
2012-04-16	Name : Fedora Update for samba FEDORA-2012-5843 File : nvt/gb_fedora_2012_5843_samba_fc16.nasl
2012-04-13	Name : Ubuntu Update for samba USN-1423-1 File : nvt/gb_ubuntu_USN_1423_1.nasl
2012-04-11	Name : RedHat Update for samba3x RHSA-2012:0466-01 File : nvt/gb_RHSA-2012_0466-01_samba3x.nasl
2012-04-11	Name : RedHat Update for samba RHSA-2012:0465-01 File : nvt/gb_RHSA-2012_0465-01_samba.nasl

Snort® IPS/IDS

Date	Description
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 23240 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22012 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22011 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22010 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22009 - Revision : 9 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22008 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22007 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22006 - Revision : 7 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22005 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 22004 - Revision : 6 - Type : SERVER-SAMBA
2014-01-10	Samba malicious user defined array size and buffer attempt RuleID : 21806 - Revision : 8 - Type : SERVER-SAMBA

Nessus® Vulnerability Scanner

Date	Description
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_samba_20121016.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-224.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-223.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2013-0506.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2013-0515.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0478.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0466.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0465.nasl - Type : ACT_GATHER_INFO
2013-03-10	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2013-0506.nasl - Type : ACT_GATHER_INFO
2013-03-10	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2013-0515.nasl - Type : ACT_GATHER_INFO
2013-03-05	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20130221_samba4_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2013-03-05	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20130221_openchange_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2013-02-21	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-0515.nasl - Type : ACT_GATHER_INFO
2013-02-21	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-0506.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120410_samba_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120410_samba3x_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-06-25	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201206-22.nasl - Type : ACT_GATHER_INFO
2012-05-16	Name : The remote Fedora host is missing a security update. File : fedora_2012-6382.nasl - Type : ACT_GATHER_INFO
2012-05-10	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2012-002.nasl - Type : ACT_GATHER_INFO
2012-05-04	Name : The remote Fedora host is missing a security update. File : fedora_2012-6349.nasl - Type : ACT_GATHER_INFO
2012-04-23	Name : The remote Fedora host is missing a security update. File : fedora_2012-5805.nasl - Type : ACT_GATHER_INFO
2012-04-19	Name : The remote Fedora host is missing a security update. File : fedora_2012-5793.nasl - Type : ACT_GATHER_INFO
2012-04-17	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_ldapsmb-120415.nasl - Type : ACT_GATHER_INFO
2012-04-16	Name : The remote Fedora host is missing a security update. File : fedora_2012-5843.nasl - Type : ACT_GATHER_INFO
2012-04-16	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cifs-mount-120411.nasl - Type : ACT_GATHER_INFO
2012-04-16	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cifs-mount-8058.nasl - Type : ACT_GATHER_INFO
2012-04-13	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2450.nasl - Type : ACT_GATHER_INFO
2012-04-13	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1423-1.nasl - Type : ACT_GATHER_INFO
2012-04-12	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-055.nasl - Type : ACT_GATHER_INFO
2012-04-11	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-0466.nasl - Type : ACT_GATHER_INFO
2012-04-11	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_baf37cd2835111e1894e00215c6a37bb.nasl - Type : ACT_GATHER_INFO
2012-04-11	Name : The remote Samba server is affected by multiple buffer overflow vulnerabilities. File : samba_rpc_multiple_buffer_overflows.nasl - Type : ACT_GATHER_INFO
2012-04-11	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-0465.nasl - Type : ACT_GATHER_INFO
2012-04-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0466.nasl - Type : ACT_GATHER_INFO
2012-04-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0465.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078258.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078726.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078836.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080567.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00014.html
http://marc.info/?l=bugtraq&m=133951282306605&w=2
http://marc.info/?l=bugtraq&m=133951282306605&w=2
http://marc.info/?l=bugtraq&m=134323086902585&w=2
http://marc.info/?l=bugtraq&m=134323086902585&w=2
http://secunia.com/advisories/48751
http://secunia.com/advisories/48754
http://secunia.com/advisories/48816
http://secunia.com/advisories/48818
http://secunia.com/advisories/48844
http://secunia.com/advisories/48873
http://secunia.com/advisories/48879
http://secunia.com/advisories/48999
http://support.apple.com/kb/HT5281
http://www.collax.com/produkte/AllinOne-server-for-small-businesses#id2565578
http://www.debian.org/security/2012/dsa-2450
http://www.mandriva.com/security/advisories?name=MDVSA-2012:055
http://www.samba.org/samba/history/samba-3.6.4.html
http://www.securitytracker.com/id?1026913
http://www.ubuntu.com/usn/USN-1423-1
https://www.samba.org/samba/security/CVE-2012-1182

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:02:17	Multiple Updates
2024-11-28 12:29:10	Multiple Updates
2024-08-02 12:19:17	Multiple Updates
2024-08-02 01:05:42	Multiple Updates
2024-02-02 01:18:43	Multiple Updates
2024-02-01 12:05:33	Multiple Updates
2023-09-05 12:17:39	Multiple Updates
2023-09-05 01:05:25	Multiple Updates
2023-09-02 12:17:40	Multiple Updates
2023-09-02 01:05:31	Multiple Updates
2023-08-12 12:21:25	Multiple Updates
2023-08-12 01:05:32	Multiple Updates
2023-08-11 12:17:47	Multiple Updates
2023-08-11 01:05:41	Multiple Updates
2023-08-06 12:17:05	Multiple Updates
2023-08-06 01:05:32	Multiple Updates
2023-08-04 12:17:09	Multiple Updates
2023-08-04 01:05:34	Multiple Updates
2023-07-14 12:17:08	Multiple Updates
2023-07-14 01:05:30	Multiple Updates
2023-03-29 01:19:05	Multiple Updates
2023-03-28 12:05:38	Multiple Updates
2022-10-11 12:15:18	Multiple Updates
2022-10-11 01:05:13	Multiple Updates
2021-05-04 12:19:26	Multiple Updates
2021-04-22 01:23:09	Multiple Updates
2020-05-23 13:16:59	Multiple Updates
2020-05-23 01:48:20	Multiple Updates
2020-05-23 00:33:08	Multiple Updates
2018-10-31 00:20:17	Multiple Updates
2018-10-02 12:08:28	Multiple Updates
2018-01-18 09:21:54	Multiple Updates
2018-01-10 13:23:18	Multiple Updates
2017-12-13 09:22:30	Multiple Updates
2016-08-23 09:24:46	Multiple Updates
2016-06-28 19:03:22	Multiple Updates
2016-04-26 21:37:13	Multiple Updates
2015-01-21 13:25:22	Multiple Updates
2014-06-14 13:32:34	Multiple Updates
2014-02-17 11:08:50	Multiple Updates
2014-01-19 21:28:31	Multiple Updates
2013-05-10 22:35:12	Multiple Updates
2013-01-30 13:21:20	Multiple Updates
2013-01-04 13:19:19	Multiple Updates
2012-12-29 13:20:26	Multiple Updates
2012-12-19 13:25:04	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	16
CPE ID(s)	207
Sources(s)	29
Openvas Exploit(s)	20
Snort® Rule(s)	11
Nessus® Exploit(s)	35

	Related
10	USN-1423-1
10	RHSA-2013:0515
10	RHSA-2013:0506
10	RHSA-2012:0478
10	RHSA-2012:0466
10	RHSA-2012:0465
10	MDVSA-2012:055
10	HPSBUX02789 SSR...
10	HPSBMU02790 SSR...
10	GLSA-201206-22
10	DSA-2450
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 11 more Alert(s)