An information leak flaw was found in the way SMB1 protocol was implemented by Samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the exact area of server memory cannot be controlled by the attacker.

References

www.securityfocus.com/bid/100925

www.securitytracker.com/id/1039401

access.redhat.com/errata/RHSA-2017:2789

access.redhat.com/errata/RHSA-2017:2790

access.redhat.com/errata/RHSA-2017:2791

access.redhat.com/errata/RHSA-2017:2858

bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12163

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03775en_us

security.netapp.com/advisory/ntap-20170921-0001/

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03817en_us

www.debian.org/security/2017/dsa-3983

www.samba.org/samba/security/CVE-2017-12163.html

www.synology.com/support/security/Synology_SA_17_57_Samba

debiancve 2

openvas 26

alpinelinux 1

cve 2

redhatcve 2

f5 1

prion 2

nvd 2

samba 1

ubuntucve 2

veracode 1

myhack58 1

ibm 7

cvelist 2

oraclelinux 4

debian 2

nessus 42

ubuntu 2

centos 3

osv 2

redhat 5

amazon 1

cisa 1

altlinux 3

slackware 1

mageia 2

fedora 3

threatpost 1

debiancve

CVE-2017-12163

2018-07-26 16:29:00

CVE-2017-15087

2017-11-08 19:29:00

openvas

Samba Server 'SMB1' Memory Information Leak Vulnerability

2017-09-22 00:00:00

RedHat Update for samba4 RHSA-2017:2791-01

2017-09-24 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:2715-1)

2021-06-09 00:00:00

alpinelinux

CVE-2017-12163

2018-07-26 16:29:00

cve

CVE-2017-12163

2018-07-26 16:29:00

CVE-2017-15087

2017-11-08 19:29:00

redhatcve

CVE-2017-12163

2019-10-10 16:18:07

CVE-2017-15087

2017-10-24 11:20:08

K00183056 : Samba vulnerability CVE-2017-12163

2018-03-20 00:00:00

prion

Information disclosure

2018-07-26 16:29:00

Code injection

2017-11-08 19:29:00

nvd

CVE-2017-12163

2018-07-26 16:29:00

CVE-2017-15087

2017-11-08 19:29:00

samba

Server memory information leak over SMB1

2017-09-20 00:00:00

ubuntucve

CVE-2017-12163

2017-09-20 00:00:00

CVE-2017-15087

2017-11-08 00:00:00

veracode

Information Disclosure

2019-05-02 06:37:07

myhack58

Samba information leak flaws vulnerability is a bug vulnerability number CVE–2017–12163 in advance prevention publicity-vulnerability warning-the black bar safety net

2017-09-22 00:00:00

ibm

Security Bulletin: Samba vulnerability issue on IBM SONAS (CVE-2017-12163)

2018-06-18 00:36:31

Security Bulletin: Open Source Samba Samba Vulnerabilities which is used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-12163 CVE-2017-12150)

2018-06-15 07:08:14

Security Bulletin: Vulnerabilities CVE-2017-12150, CVE-2017-12151 and CVE-2017-12163 in Samba affect IBM i

2019-12-18 14:26:38

cvelist

CVE-2017-12163

2018-07-26 16:00:00

CVE-2017-15087

2017-11-08 19:00:00

oraclelinux

samba4 security update

2017-09-26 00:00:00

samba security update

2017-09-26 00:00:00

samba security update

2017-09-26 00:00:00

debian

[SECURITY] [DLA 1110-1] samba security update

2017-09-25 09:30:08

[SECURITY] [DSA 3983-1] samba security update

2017-09-22 21:19:12

nessus

Debian DLA-1110-1 : samba security update

2017-09-26 00:00:00

Virtuozzo 6 : samba4 / samba4-client / samba4-common / samba4-dc / etc (VZLSA-2017-2791)

2018-11-27 00:00:00

Oracle Linux 6 : samba4 (ELSA-2017-2791)

2017-09-27 00:00:00

ubuntu

Samba vulnerabilities

2017-11-02 00:00:00

Samba vulnerabilities

2017-09-21 00:00:00

centos

samba4 security update

2017-09-21 14:49:57

libsmbclient, samba security update

2017-09-21 14:43:52

ctdb, libsmbclient, libwbclient, samba security update

2017-09-21 17:20:54

osv

samba - security update

2017-09-25 00:00:00

samba - security update

2017-09-22 00:00:00

redhat

(RHSA-2017:2791) Moderate: samba4 security update

2017-09-21 09:34:05

(RHSA-2017:2789) Moderate: samba security update

2017-09-21 09:33:11

(RHSA-2017:2858) Moderate: samba security update

2017-10-04 04:47:19

amazon

Medium: samba

2017-10-12 19:37:00

cisa

Samba Releases Security Updates

2017-09-20 00:00:00

altlinux

Security fix for the ALT Linux 8 package samba-DC version 4.6.8-alt1

2017-09-20 00:00:00

Security fix for the ALT Linux 10 package samba version 4.6.8-alt1.S1

2017-09-20 00:00:00

Security fix for the ALT Linux 8 package samba version 4.6.8-alt1

2017-09-20 00:00:00

slackware

[slackware-security] samba

2017-09-21 01:26:36

mageia

Updated samba packages fix security vulnerability

2018-01-02 19:25:41

Updated samba packages fix security vulnerabilities

2018-01-02 19:25:41

fedora

[SECURITY] Fedora 25 Update: samba-4.5.14-0.fc25

2017-10-06 18:50:39

[SECURITY] Fedora 27 Update: samba-4.7.0-12.fc27

2017-09-30 07:40:10

[SECURITY] Fedora 26 Update: samba-4.6.8-0.fc26

2017-09-23 20:23:37

threatpost

Samba Update Patches Two SMB-Related MiTM Bugs

2017-09-22 11:00:44

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.629

Percentile

97.9%

JSON

Related for OSV:CVE-2017-12163