CVE-2010-3069
published 2010-09-15CVE-2010-3069: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
10.55%
95.2th percentile
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | samba | < samba 2:3.5.5~dfsg-1 (bookworm) | samba 2:3.5.5~dfsg-1 (bookworm) |
| samba | samba | >= 0 < 2:3.5.5~dfsg-1 | 2:3.5.5~dfsg-1 |
| samba | samba | >= 0 < 2:3.5.5~dfsg-1 | 2:3.5.5~dfsg-1 |
| samba | samba | >= 0 < 2:3.5.5~dfsg-1 | 2:3.5.5~dfsg-1 |
| samba | samba | >= 0 < 2:3.5.5~dfsg-1 | 2:3.5.5~dfsg-1 |
| samba | samba | 3.0.0 – 3.3.14 | — |
| samba | samba | >= 3.4.0 < 3.4.9 | 3.4.9 |
| samba | samba | >= 3.5.0 < 3.5.5 | 3.5.5 |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-378p-935f-rmpw: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3
ghsa_unreviewed·2022-05-14
CVE-2010-3069 [HIGH] CWE-119 GHSA-378p-935f-rmpw: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.
OSV
CVE-2010-3069: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3
osv·2010-09-15·CVSS 7.5
CVE-2010-3069 [HIGH] CVE-2010-3069: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.
Red Hat
Samba: Stack-based buffer overflow by processing specially-crafted SID records
vendor_redhat·2010-09-14·CVSS 7.5
CVE-2010-3069 [HIGH] CWE-129 Samba: Stack-based buffer overflow by processing specially-crafted SID records
Samba: Stack-based buffer overflow by processing specially-crafted SID records
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.
Ubuntu
Samba vulnerability
vendor_ubuntu·2010-09-14
CVE-2010-3069 Samba vulnerability
Title: Samba vulnerability
Andrew Bartlett discovered that Samba did not correctly validate the
length when parsing SIDs. A remote attacker could send a specially crafted
request to the server and cause a denial of service, or possibly execute
arbitrary code with the privileges of the Samba service (smbd).
The default compiler options for Ubuntu 8.04 LTS and newer should reduce
the vulnerability to a denial of service.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2010-3069: samba - Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions...
vendor_debian·2010·CVSS 7.5
CVE-2010-3069 [HIGH] CVE-2010-3069: samba - Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions...
Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.
Scope: local
bookworm: resolved (fixed in 2:3.5.5~dfsg-1)
bullseye: resolved (fixed in 2:3.5.5~dfsg-1)
forky: resolved (fixed in 2:3.5.5~dfsg-1)
sid: resolved (fixed in 2:3.5.5~dfsg-1)
trixie: resolved (fixed in 2:3.5.5~dfsg-1)
No detection rules found.
No public exploits indexed.
http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2011/Mar/msg00006.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047650.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047697.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047758.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://marc.info/?l=bugtraq&m=130835366526620&w=2http://secunia.com/advisories/41354http://secunia.com/advisories/41447http://secunia.com/advisories/42531http://secunia.com/advisories/42885http://support.apple.com/kb/HT4581http://support.apple.com/kb/HT4723http://us1.samba.org/samba/history/samba-3.5.5.htmlhttp://us1.samba.org/samba/security/CVE-2010-3069.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0860.htmlhttp://www.securityfocus.com/archive/1/515055/100/0/threadedhttp://www.securityfocus.com/bid/43212http://www.securitytracker.com/id?1024434http://www.ubuntu.com/usn/USN-987-1http://www.vmware.com/security/advisories/VMSA-2010-0019.htmlhttp://www.vupen.com/english/advisories/2010/2378http://www.vupen.com/english/advisories/2010/3126http://www.vupen.com/english/advisories/2011/0091https://exchange.xforce.ibmcloud.com/vulnerabilities/61773http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2011/Mar/msg00006.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047650.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047697.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047758.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://marc.info/?l=bugtraq&m=130835366526620&w=2http://secunia.com/advisories/41354http://secunia.com/advisories/41447http://secunia.com/advisories/42531http://secunia.com/advisories/42885http://support.apple.com/kb/HT4581http://support.apple.com/kb/HT4723http://us1.samba.org/samba/history/samba-3.5.5.htmlhttp://us1.samba.org/samba/security/CVE-2010-3069.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0860.htmlhttp://www.securityfocus.com/archive/1/515055/100/0/threadedhttp://www.securityfocus.com/bid/43212http://www.securitytracker.com/id?1024434http://www.ubuntu.com/usn/USN-987-1http://www.vmware.com/security/advisories/VMSA-2010-0019.htmlhttp://www.vupen.com/english/advisories/2010/2378http://www.vupen.com/english/advisories/2010/3126http://www.vupen.com/english/advisories/2011/0091https://exchange.xforce.ibmcloud.com/vulnerabilities/61773
2010-09-15
Published