QwikSec

Security Database

CVE

CWE

Training

CVE-2014-3560

Published: Aug 6, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a sizeof operation on an incorrect variable in the unstrcpy macro in string_wrappers.h.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=1126010

x_refsource_CONFIRM

http://www.samba.org/samba/security/CVE-2014-3560

x_refsource_CONFIRM

FEDORA-2014-9141

vendor-advisory

x_refsource_FEDORA

FEDORA-2014-9132

vendor-advisory

x_refsource_FEDORA

https://git.samba.org/?p=samba.git%3Ba=commitdiff%3Bh=e6a848630da3ba958c442438ea131c99fa088605

x_refsource_CONFIRM

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_UBUNTU

openSUSE-SU-2014:1040

vendor-advisory

x_refsource_SUSE

https://git.samba.org/?p=samba.git%3Ba=commitdiff%3Bh=fb1d325d96dfe9bc2e9c4ec46ad4c55e8f18f4a2

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

samba-cve20143560-bo(95081)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.