CVSS: 10.0EPSS: 96%CPEs: 29EXPL: 3CVE-2003-0085 – Samba 2.2.x - 'nttrans' Remote Overflow
https://notcve.org/view.php?id=CVE-2003-0085
18 Mar 2003 — Buffer overflow in the SMB/CIFS packet fragment re-assembly code for SMB daemon (smbd) in Samba before 2.2.8, and Samba-TNG before 0.3.1, allows remote attackers to execute arbitrary code. • https://www.exploit-db.com/exploits/9936 •
CVSS: 4.7EPSS: 0%CPEs: 22EXPL: 0CVE-2003-0086
https://notcve.org/view.php?id=CVE-2003-0086
18 Mar 2003 — The code for writing reg files in Samba before 2.2.8 allows local users to overwrite arbitrary files via a race condition involving chown. • ftp://patches.sgi.com/support/free/security/advisories/20030302-01-I •
CVSS: 9.8EPSS: 7%CPEs: 21EXPL: 0CVE-2002-2196
https://notcve.org/view.php?id=CVE-2002-2196
31 Dec 2002 — Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2001-0406 – Samba 2.0.x - Insecure TMP File Symbolic Link
https://notcve.org/view.php?id=CVE-2001-0406
24 May 2001 — Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient. • https://www.exploit-db.com/exploits/20776 •