CVE-2015-0240 — Vulnetix

Try Vulnetix Request Demo

CVE-2015-0240 PUBLISHED

The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.

EPSS 89.54% · 99.5th percentile

Risk Scores

EPSS Score

89.54%

99.5th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	samba	0, 2:3.6.18-1ubuntu3, 2:4.0.10+dfsg-4ubuntu2

Timeline

CVE Published
Apr 14, 2015 PoC Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2015-0240 third-party-advisory
https://www.samba.org/samba/security/CVE-2015-0240 third-party-advisory
https://ubuntu.com/security/notices/USN-2508-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2015-0240 third-party-advisory

Open in Interactive Console →