CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2001-0406 – Samba 2.0.x - Insecure TMP File Symbolic Link
https://notcve.org/view.php?id=CVE-2001-0406
24 May 2001 — Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient. • https://www.exploit-db.com/exploits/20776 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 4CVE-2000-0935 – Samba 2.0.7 - SWAT Symlink
https://notcve.org/view.php?id=CVE-2000-0935
19 Dec 2000 — Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file. • https://www.exploit-db.com/exploits/20339 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 3CVE-2000-0936 – Samba 2.0.7 - SWAT Logfile Permissions
https://notcve.org/view.php?id=CVE-2000-0936
19 Dec 2000 — Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords. • https://www.exploit-db.com/exploits/20341 •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 3CVE-2000-0937 – Samba 2.0.7 - SWAT Logging Failure
https://notcve.org/view.php?id=CVE-2000-0937
19 Dec 2000 — Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force password guessing attacks. • https://www.exploit-db.com/exploits/20340 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2000-0938
https://notcve.org/view.php?id=CVE-2000-0938
19 Dec 2000 — Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name, which allows remote attackers to identify valid users on the server. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2000-0939
https://notcve.org/view.php?id=CVE-2000-0939
29 Nov 2000 — Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-1999-0812
https://notcve.org/view.php?id=CVE-1999-0812
04 Jan 2000 — Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0812 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-1999-0810
https://notcve.org/view.php?id=CVE-1999-0810
21 Jul 1999 — Denial of service in Samba NETBIOS name service daemon (nmbd). • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0810 •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 1CVE-1999-0811 – Samba < 2.0.5 - Local Overflow
https://notcve.org/view.php?id=CVE-1999-0811
21 Jul 1999 — Buffer overflow in Samba smbd program via a malformed message command. • https://www.exploit-db.com/exploits/19428 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-1999-1288
https://notcve.org/view.php?id=CVE-1999-1288
19 Nov 1998 — Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program. • http://www.caldera.com/support/security/advisories/SA-1998.35.txt •