Back to search
CVE-2015-0240
Published: Feb 24, 2015
Modified: May 9, 2025
PUBLISHED
Description
The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
HPSBUX03320
vendor-advisory
x_refsource_HP
RHSA-2015:0257
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0254
vendor-advisory
x_refsource_REDHAT
http://advisories.mageia.org/MGASA-2015-0084.html
x_refsource_CONFIRM
SSA:2015-064-01
vendor-advisory
x_refsource_SLACKWARE
36741
exploit
x_refsource_EXPLOIT-DB
RHSA-2015:0250
vendor-advisory
x_refsource_REDHAT
https://support.lenovo.com/product_security/samba_remote_vuln
x_refsource_CONFIRM
SSRT101952
vendor-advisory
x_refsource_HP
USN-2508-1
vendor-advisory
x_refsource_UBUNTU
openSUSE-SU-2016:1064
vendor-advisory
x_refsource_SUSE
SUSE-SU-2015:0386
vendor-advisory
x_refsource_SUSE
RHSA-2015:0253
vendor-advisory
x_refsource_REDHAT
https://www.samba.org/samba/security/CVE-2015-0240
x_refsource_CONFIRM
72711
vdb-entry
x_refsource_BID
RHSA-2015:0249
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0251
vendor-advisory
x_refsource_REDHAT
GLSA-201502-15
vendor-advisory
x_refsource_GENTOO
DSA-3171
vendor-advisory
x_refsource_DEBIAN
1031783
vdb-entry
x_refsource_SECTRACK
RHSA-2015:0252
vendor-advisory
x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=1191325
x_refsource_CONFIRM
MDVSA-2015:082
vendor-advisory
x_refsource_MANDRIVA
HPSBGN03288
vendor-advisory
x_refsource_HP
openSUSE-SU-2016:1106
vendor-advisory
x_refsource_SUSE
https://support.lenovo.com/us/en/product_security/samba_remote_vuln
x_refsource_CONFIRM
MDVSA-2015:081
vendor-advisory
x_refsource_MANDRIVA
RHSA-2015:0255
vendor-advisory
x_refsource_REDHAT
https://access.redhat.com/articles/1346913
x_refsource_CONFIRM
openSUSE-SU-2016:1107
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2015:0375
vendor-advisory
x_refsource_SUSE
RHSA-2015:0256
vendor-advisory
x_refsource_REDHAT
SSRT101979
vendor-advisory
x_refsource_HP
SUSE-SU-2015:0371
vendor-advisory
x_refsource_SUSE
SUSE-SU-2015:0353
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now