Showing 1 - 5 of 5

CVE-2017-14746

Status Candidate

Overview

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request.

Gentoo Linux Security Advisory 201805-07: Posted May 23, 2018; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201805-7 - Multiple vulnerabilities have been found in Samba, the worst of which may allow remote execution of arbitrary code. Versions less than 4.5.16 are affected.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2016-2119, CVE-2017-14746, CVE-2017-15275, CVE-2017-7494, CVE-2018-1050, CVE-2018-1057; SHA-256 | 75d9dc5f4726c1960e8dac452254838989ffb7cf7b89fa278040830e69875411; Download | Favorite | View

Red Hat Security Advisory 2017-3278-01: Posted Nov 29, 2017; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2017-3278-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. Security Fix: A use-after-free flaw was found in the way samba servers handled certain SMB1 requests. An unauthenticated attacker could send specially-crafted SMB1 requests to cause the server to crash or execute arbitrary code.; tags | advisory, arbitrary, protocol; systems | linux, redhat; advisories | CVE-2017-14746, CVE-2017-15275; SHA-256 | de1f8ce0c545dd5e721901bd69c8576b25fd91fc7c1a1fc6417acc89c997fbbd; Download | Favorite | View

Red Hat Security Advisory 2017-3260-01: Posted Nov 26, 2017; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2017-3260-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix: A use-after-free flaw was found in the way samba servers handled certain SMB1 requests. An unauthenticated attacker could send specially-crafted SMB1 requests to cause the server to crash or execute arbitrary code.; tags | advisory, arbitrary, protocol; systems | linux, redhat; advisories | CVE-2017-14746, CVE-2017-15275; SHA-256 | 72bff5eeaf95fdb4b4ac2ebcf68af55321ee8f64acf7739996295673df7acc07; Download | Favorite | View

Red Hat Security Advisory 2017-3261-01: Posted Nov 26, 2017; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2017-3261-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix: A use-after-free flaw was found in the way samba servers handled certain SMB1 requests. An unauthenticated attacker could send specially-crafted SMB1 requests to cause the server to crash or execute arbitrary code.; tags | advisory, arbitrary, protocol; systems | linux, redhat; advisories | CVE-2017-14746, CVE-2017-15275; SHA-256 | fed469e8e8d4a4134ed22714125824df53afefc6638baa14aa62045722f9a4bd; Download | Favorite | View

Ubuntu Security Notice USN-3486-1: Posted Nov 21, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3486-1 - Yihan Lian and Zhibin Hu discovered that Samba incorrectly handled memory when processing certain SMB1 requests. A remote attacker could possibly use this issue to execute arbitrary code. Volker Lendecke discovered that Samba incorrectly cleared memory when returning data to a client. A remote attacker could possibly use this issue to obtain sensitive information.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2017-14746, CVE-2017-15275; SHA-256 | 469f99a0aadb2f94e8f7029a33d5d8daffe10b3eee426deea59e5b3f7f44d93a; Download | Favorite | View

Page 1 of 1 Back 1 Next