The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.
AV:N/AC:L/Au:N/C:C/I:C/A:CCanonical Ubuntu
OSCanonical12.0414.0414.10Novell SUSE Linux Enterprise Desktop
OSNovell12Novell SUSE Linux Enterprise Server
OSNovell12Novell SUSE Linux Enterprise Software Development Kit
OSNovell12Red Hat Enterprise Linux
OSRedhat56.07.0Samba
APPSamba3.5.03.5.13.5.103.5.113.5.123.5.133.5.143.5.153.5.163.5.173.5.183.5.193.5.23.5.203.5.21+ 69 więcej
Related vulnerabilities
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debia...
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process Clea...
smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote att...