CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
94.4%
Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack.
Vendor | Product | Version | CPE |
---|---|---|---|
samba | samba | * | cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* |
samba | samba | 1.9.17 | cpe:2.3:a:samba:samba:1.9.17:*:*:*:*:*:*:* |
samba | samba | 1.9.17 | cpe:2.3:a:samba:samba:1.9.17:p1:*:*:*:*:*:* |
samba | samba | 1.9.17 | cpe:2.3:a:samba:samba:1.9.17:p3:*:*:*:*:*:* |
samba | samba | 1.9.17 | cpe:2.3:a:samba:samba:1.9.17:p4:*:*:*:*:*:* |
samba | samba | 1.9.17 | cpe:2.3:a:samba:samba:1.9.17:p5:*:*:*:*:*:* |
samba | samba | 1.9.18 | cpe:2.3:a:samba:samba:1.9.18:p1:*:*:*:*:*:* |
samba | samba | 1.9.18 | cpe:2.3:a:samba:samba:1.9.18:p10:*:*:*:*:*:* |
samba | samba | 1.9.18 | cpe:2.3:a:samba:samba:1.9.18:p2:*:*:*:*:*:* |
samba | samba | 1.9.18 | cpe:2.3:a:samba:samba:1.9.18:p3:*:*:*:*:*:* |