VDB
CVE-2015-0240
CVE-2015-0240
PUBLISHED
The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.
EPSS 90.70% · 99.6th percentile
Risk Scores
EPSS Score
90.70%
99.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | samba | 0, 2:3.6.18-1ubuntu3, 2:4.0.10+dfsg-4ubuntu2 |
Exploit Intelligence
- SERVER-SAMBA Samba smbd _netr_ServerPasswordSet deprecated vulnerable function access attempt [disabled] (vulnetix)
- SERVER-SAMBA Samba smbd _netr_ServerPasswordSet deprecated vulnerable function access attempt [disabled] (vulnetix)
- SERVER-SAMBA Samba smbd _netr_ServerPasswordSet deprecated vulnerable function access attempt [disabled] (community-snort)
- SERVER-SAMBA Samba smbd _netr_ServerPasswordSet deprecated vulnerable function access attempt [disabled] (community-snort)
- https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/ (nist-nvd)
- 36741 (cve.org)
- Samba < 3.6.2 x86 - PoC (0day-today)
- Samba < 3.6.2 x86 - PoC (0day-today)
Timeline
- CVE Published
- Apr 14, 2015 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Feb 13, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2015-0240 third-party-advisory
- https://www.samba.org/samba/security/CVE-2015-0240 third-party-advisory
- https://ubuntu.com/security/notices/USN-2508-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2015-0240 third-party-advisory