cbcvebase.
CVE-2010-3069
published 2010-09-15

CVE-2010-3069: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service…

PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
10.55%
95.2th percentile
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.

Affected

13 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiansamba< samba 2:3.5.5~dfsg-1 (bookworm)samba 2:3.5.5~dfsg-1 (bookworm)
sambasamba>= 0 < 2:3.5.5~dfsg-12:3.5.5~dfsg-1
sambasamba>= 0 < 2:3.5.5~dfsg-12:3.5.5~dfsg-1
sambasamba>= 0 < 2:3.5.5~dfsg-12:3.5.5~dfsg-1
sambasamba>= 0 < 2:3.5.5~dfsg-12:3.5.5~dfsg-1
sambasamba3.0.0 – 3.3.14
sambasamba>= 3.4.0 < 3.4.93.4.9
sambasamba>= 3.5.0 < 3.5.53.5.5

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.