VDB

DEBIAN-CVE-2020-10704

DEBIAN-CVE-2020-10704 PUBLISHED CVSS 7.5 HIGH

A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user can cause a stack overflow leading to a denial of service. The highest threat from this vulnerability is to system availability. This issue affects all samba versions before 4.10.15, before 4.11.8 and before 4.12.2.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:12samba0, 0, 0
Debian:11samba0, 0, 0
Debian:14samba0, 0, 0
Debian:13samba0, 0, 0

Timeline

  • May 6, 2020 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›