Page 39 of 200 results (0.008 seconds)

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 3

Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords. • https://www.exploit-db.com/exploits/20341 http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html http://www.securityfocus.com/bid/1874 https://exchange.xforce.ibmcloud.com/vulnerabilities/5445 •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 4

Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file. • https://www.exploit-db.com/exploits/20339 https://www.exploit-db.com/exploits/20338 http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html http://www.securityfocus.com/bid/1872 https://exchange.xforce.ibmcloud.com/vulnerabilities/5443 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1

Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name, which allows remote attackers to identify valid users on the server. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5442 •

CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 3

Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force password guessing attacks. • https://www.exploit-db.com/exploits/20340 http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html http://www.securityfocus.com/bid/1873 https://exchange.xforce.ibmcloud.com/vulnerabilities/5442 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1

Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart. • http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5444 •