VAR-201204-0112
Vulnerability from variot - Updated: 2026-03-09 21:59The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call. When parsing the data send in the request Samba uses the field 'settings' to create a heap allocation but then uses another field, 'count', to write data to the allocation. Authentication is not required to exploit this vulnerability. The specific flaw exists within Samba's handling of a NDR PULL DFS EnumArray1 request. By sending a specially crafted packet, it is possible to cause Samba to use a different size for memory allocation than it uses for a memory copy loop. This can result in memory corruption, and may be exploited by an attacker to gain remote code execution. Samba is prone to a remote-code-execution vulnerability. Failed exploit attempts will cause a denial-of-service condition. Samba versions 3.0 through 3.6.3 are vulnerable. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03365218
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03365218 Version: 1
HPSBUX02789 SSRT100824 rev.1 - HP-UX CIFS Server (Samba), Remote Execution of Arbitrary Code, Elevation of Privileges
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-06-13 Last Updated: 2012-06-13
Potential Security Impact: Remote execution of arbitrary code, elevation of privileges
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba).
References: CVE-2012-1182, CVE-2012-2111
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.23, B.11.31 running HP-UX CIFS-Server (Samba) A.03.01.04 or earlier
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2012-1182 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2012-2111 (AV:N/AC:L/Au:S/C:P/I:P/A:P) 6.5 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following software update to resolve the vulnerabilities. The update is available for download from http://software.hp.com
HP-UX CIFS-Server (Samba) HP-UX Release / Apache Depot name
A.03.01.05 11i v2 / B8725AA_A.03.01.05_HP-UX_B.11.23_IA_PA.depot
11i v3 / CIFS-SERVER_A.03.01.05_HP-UX_B.11.31_IA_PA.depot
MANUAL ACTIONS: Yes - Update Install HP-UX CIFS-Server (Samba) A.03.01.05 or subsequent.
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.23 HP-UX B.11.31 ================== CIFS-Development.CIFS-PRG CIFS-Server.CIFS-ADMIN CIFS-Server.CIFS-DOC CIFS-Server.CIFS-LIB CIFS-Server.CIFS-RUN CIFS-Server.CIFS-UTIL action: install revision A.03.01.05 or subsequent
END AFFECTED VERSIONS
HISTORY Version:1 (rev.1) - 13 June 2012 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c02964430
Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2012 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Moderate: samba4 security, bug fix and enhancement update Advisory ID: RHSA-2013:0506-02 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2013-0506.html Issue date: 2013-02-21 CVE Names: CVE-2012-1182 =====================================================================
- Summary:
Updated samba4 packages that fix one security issue, multiple bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64
- Description:
Samba is an open-source implementation of the Server Message Block (SMB) or Common Internet File System (CIFS) protocol, which allows PC-compatible machines to share files, printers, and other information.
A flaw was found in the Samba suite's Perl-based DCE/RPC IDL (PIDL) compiler, used to generate code to handle RPC calls. (CVE-2012-1182)
The samba4 packages have been upgraded to upstream version 4.0.0, which provides a number of bug fixes and enhancements over the previous version. In particular, improved interoperability with Active Directory (AD) domains. SSSD now uses the libndr-krb5pac library to parse the Privilege Attribute Certificate (PAC) issued by an AD Key Distribution Center (KDC).
The Cross Realm Kerberos Trust functionality provided by Identity Management, which relies on the capabilities of the samba4 client library, is included as a Technology Preview. This functionality and server libraries, is included as a Technology Preview. This functionality uses the libndr-nbt library to prepare Connection-less Lightweight Directory Access Protocol (CLDAP) messages.
Additionally, various improvements have been made to the Local Security Authority (LSA) and Net Logon services to allow verification of trust from a Windows system. Because the Cross Realm Kerberos Trust functionality is considered a Technology Preview, selected samba4 components are considered to be a Technology Preview. For more information on which Samba packages are considered a Technology Preview, refer to Table 5.1, "Samba4 Package Support" in the Release Notes, linked to from the References. (BZ#766333, BZ#882188)
This update also fixes the following bug:
- Prior to this update, if the Active Directory (AD) server was rebooted, Winbind sometimes failed to reconnect when requested by "wbinfo -n" or "wbinfo -s" commands. Consequently, looking up users using the wbinfo tool failed. This update applies upstream patches to fix this problem and now looking up a Security Identifier (SID) for a username, or a username for a given SID, works as expected after a domain controller is rebooted. (BZ#878564)
All users of samba4 are advised to upgrade to these updated packages, which fix these issues and add these enhancements.
Warning: If you upgrade from Red Hat Enterprise Linux 6.3 to Red Hat Enterprise Linux 6.4 and you have Samba in use, you should make sure that you uninstall the package named "samba4" to avoid conflicts during the upgrade.
- Solution:
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
- Bugs fixed (http://bugzilla.redhat.com/):
766333 - Rebase Samba4 libraries to pick up functionality required for IdM 804093 - CVE-2012-1182 samba: Multiple heap-based buffer overflows in memory management based on NDR marshalling code output 861892 - samba4's wbclient/smbclient provides need to be filtered to avoid confusion with samba's wbclient/smbclient provides 864889 - Configure winbind_krb5_locator.so via alternatives to allow IPA AD trusts use 867317 - pam_winbind.conf is not packaged in samba-winbind-clients where the module is packaged. 867854 - auth_builtin auth_domain auth_sam and auth_winbind are built as shared modules. 868248 - samba-winbind package wants /var/log/samba 868419 - samba4 smb and winbind init scripts missing export KRB5CCNAME 877085 - Wrong sysconfig filename 878564 - IPA trust cannot always lookup AD users with wbinfo 882188 - samba4-libs: yyin symbol collision 885089 - Samba netlogon AES support incorrect 886157 - samba4 should use the same winbind pipes as samba 895718 - Incomplete rpm provides filters causes issues with the samba4-libs package on certain architectures
- Package List:
Red Hat Enterprise Linux Desktop (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm
i386: samba4-4.0.0-55.el6.rc4.i686.rpm samba4-client-4.0.0-55.el6.rc4.i686.rpm samba4-common-4.0.0-55.el6.rc4.i686.rpm samba4-dc-4.0.0-55.el6.rc4.i686.rpm samba4-dc-libs-4.0.0-55.el6.rc4.i686.rpm samba4-debuginfo-4.0.0-55.el6.rc4.i686.rpm samba4-devel-4.0.0-55.el6.rc4.i686.rpm samba4-libs-4.0.0-55.el6.rc4.i686.rpm samba4-pidl-4.0.0-55.el6.rc4.i686.rpm samba4-python-4.0.0-55.el6.rc4.i686.rpm samba4-swat-4.0.0-55.el6.rc4.i686.rpm samba4-test-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.i686.rpm
x86_64: samba4-4.0.0-55.el6.rc4.x86_64.rpm samba4-client-4.0.0-55.el6.rc4.x86_64.rpm samba4-common-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm samba4-devel-4.0.0-55.el6.rc4.x86_64.rpm samba4-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm samba4-python-4.0.0-55.el6.rc4.x86_64.rpm samba4-swat-4.0.0-55.el6.rc4.x86_64.rpm samba4-test-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm
Red Hat Enterprise Linux HPC Node (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm
x86_64: samba4-4.0.0-55.el6.rc4.x86_64.rpm samba4-client-4.0.0-55.el6.rc4.x86_64.rpm samba4-common-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm samba4-devel-4.0.0-55.el6.rc4.x86_64.rpm samba4-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm samba4-python-4.0.0-55.el6.rc4.x86_64.rpm samba4-swat-4.0.0-55.el6.rc4.x86_64.rpm samba4-test-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm
Red Hat Enterprise Linux Server (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm
i386: samba4-4.0.0-55.el6.rc4.i686.rpm samba4-client-4.0.0-55.el6.rc4.i686.rpm samba4-common-4.0.0-55.el6.rc4.i686.rpm samba4-dc-4.0.0-55.el6.rc4.i686.rpm samba4-dc-libs-4.0.0-55.el6.rc4.i686.rpm samba4-debuginfo-4.0.0-55.el6.rc4.i686.rpm samba4-devel-4.0.0-55.el6.rc4.i686.rpm samba4-libs-4.0.0-55.el6.rc4.i686.rpm samba4-pidl-4.0.0-55.el6.rc4.i686.rpm samba4-python-4.0.0-55.el6.rc4.i686.rpm samba4-swat-4.0.0-55.el6.rc4.i686.rpm samba4-test-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.i686.rpm
ppc64: samba4-4.0.0-55.el6.rc4.ppc64.rpm samba4-client-4.0.0-55.el6.rc4.ppc64.rpm samba4-common-4.0.0-55.el6.rc4.ppc64.rpm samba4-dc-4.0.0-55.el6.rc4.ppc64.rpm samba4-dc-libs-4.0.0-55.el6.rc4.ppc64.rpm samba4-debuginfo-4.0.0-55.el6.rc4.ppc64.rpm samba4-devel-4.0.0-55.el6.rc4.ppc64.rpm samba4-libs-4.0.0-55.el6.rc4.ppc64.rpm samba4-pidl-4.0.0-55.el6.rc4.ppc64.rpm samba4-python-4.0.0-55.el6.rc4.ppc64.rpm samba4-swat-4.0.0-55.el6.rc4.ppc64.rpm samba4-test-4.0.0-55.el6.rc4.ppc64.rpm samba4-winbind-4.0.0-55.el6.rc4.ppc64.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.ppc64.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.ppc64.rpm
s390x: samba4-4.0.0-55.el6.rc4.s390x.rpm samba4-client-4.0.0-55.el6.rc4.s390x.rpm samba4-common-4.0.0-55.el6.rc4.s390x.rpm samba4-dc-4.0.0-55.el6.rc4.s390x.rpm samba4-dc-libs-4.0.0-55.el6.rc4.s390x.rpm samba4-debuginfo-4.0.0-55.el6.rc4.s390x.rpm samba4-devel-4.0.0-55.el6.rc4.s390x.rpm samba4-libs-4.0.0-55.el6.rc4.s390x.rpm samba4-pidl-4.0.0-55.el6.rc4.s390x.rpm samba4-python-4.0.0-55.el6.rc4.s390x.rpm samba4-swat-4.0.0-55.el6.rc4.s390x.rpm samba4-test-4.0.0-55.el6.rc4.s390x.rpm samba4-winbind-4.0.0-55.el6.rc4.s390x.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.s390x.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.s390x.rpm
x86_64: samba4-4.0.0-55.el6.rc4.x86_64.rpm samba4-client-4.0.0-55.el6.rc4.x86_64.rpm samba4-common-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm samba4-devel-4.0.0-55.el6.rc4.x86_64.rpm samba4-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm samba4-python-4.0.0-55.el6.rc4.x86_64.rpm samba4-swat-4.0.0-55.el6.rc4.x86_64.rpm samba4-test-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm
Red Hat Enterprise Linux Workstation (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm
i386: samba4-4.0.0-55.el6.rc4.i686.rpm samba4-client-4.0.0-55.el6.rc4.i686.rpm samba4-common-4.0.0-55.el6.rc4.i686.rpm samba4-dc-4.0.0-55.el6.rc4.i686.rpm samba4-dc-libs-4.0.0-55.el6.rc4.i686.rpm samba4-debuginfo-4.0.0-55.el6.rc4.i686.rpm samba4-devel-4.0.0-55.el6.rc4.i686.rpm samba4-libs-4.0.0-55.el6.rc4.i686.rpm samba4-pidl-4.0.0-55.el6.rc4.i686.rpm samba4-python-4.0.0-55.el6.rc4.i686.rpm samba4-swat-4.0.0-55.el6.rc4.i686.rpm samba4-test-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.i686.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.i686.rpm
x86_64: samba4-4.0.0-55.el6.rc4.x86_64.rpm samba4-client-4.0.0-55.el6.rc4.x86_64.rpm samba4-common-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-4.0.0-55.el6.rc4.x86_64.rpm samba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm samba4-devel-4.0.0-55.el6.rc4.x86_64.rpm samba4-libs-4.0.0-55.el6.rc4.x86_64.rpm samba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm samba4-python-4.0.0-55.el6.rc4.x86_64.rpm samba4-swat-4.0.0-55.el6.rc4.x86_64.rpm samba4-test-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm samba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2012-1182.html https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.4_Release_Notes/index.html
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)
iD8DBQFRJb/SXlSAg2UNWIIRAu9pAJ0bXOSJ3SN3aR3fw5MGSEkMJi3lMgCdGerb Ylk6a0Ez2DTp2M59lbdEswI= =joFH -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . Description:
The openchange packages provide libraries to access Microsoft Exchange servers using native protocols. Evolution-MAPI uses these libraries to integrate the Evolution PIM application with Microsoft Exchange servers. With this update, the code has been generated with an updated version of PIDL to correct this issue. (BZ#767672, BZ#767678)
This update also fixes the following bugs:
-
When the user tried to modify a meeting with one required attendee and himself as the organizer, a segmentation fault occurred in the memcpy() function. Consequently, the evolution-data-server application terminated unexpectedly with a segmentation fault. This bug has been fixed and evolution-data-server no longer crashes in the described scenario. (BZ#680061)
-
Prior to this update, OpenChange 1.0 was unable to send messages with a large message body or with extensive attachment. This was caused by minor issues in OpenChange's exchange.idl definitions. This bug has been fixed and OpenChange now sends extensive messages without complications. After installing this update, the smb service will be restarted automatically. Content-Disposition: inline
==========================================================================Ubuntu Security Notice USN-1423-1 April 13, 2012
samba vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04 LTS
- Ubuntu 8.04 LTS
Summary:
Samba could be made to run programs as the administrator if it received specially crafted network traffic.
Software Description: - samba: SMB/CIFS file, print, and login server for Unix
Details:
Brian Gorenc discovered that Samba incorrectly calculated array bounds when handling remote procedure calls (RPC) over the network. (CVE-2012-1182)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 11.10: samba 2:3.5.11~dfsg-1ubuntu2.2
Ubuntu 11.04: samba 2:3.5.8~dfsg-1ubuntu2.4
Ubuntu 10.04 LTS: samba 2:3.4.7~dfsg-1ubuntu3.9
Ubuntu 8.04 LTS: samba 3.0.28a-1ubuntu4.18
In general, a standard system update will make all the necessary changes
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "3.6.x",
"scope": null,
"trust": 6.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.0"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.2"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.4"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.5"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 2.0,
"vendor": "samba",
"version": "3.0.6"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.7,
"vendor": "samba",
"version": "3.0.2a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.7"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.8"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.9"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.10"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.11"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.12"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.13"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.14"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.15"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.16"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.17"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.18"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.19"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.20"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.21"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.22"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.23"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.24"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.26"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.27"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.28"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.29"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.30"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.31"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.32"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.33"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.34"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.35"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.36"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.0.37"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.2"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.4"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.5"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.6"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.7"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.8"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.9"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.10"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.11"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.12"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.13"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.14"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.2.15"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.2"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.4"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.5"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.6"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.7"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.8"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.9"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.10"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.11"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.12"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.13"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.14"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.15"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.3.16"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.2"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.4"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.5"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.6"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.7"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.8"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.9"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.10"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.11"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.12"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.13"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.4.14"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.2"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.4"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.5"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.6"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.7"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.8"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.9"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.10"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.5.11"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.6.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.6.2"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.4,
"vendor": "samba",
"version": "3.6.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.14a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.20a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.20b"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.21a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.21b"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.21c"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.23a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.23b"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.23c"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.23d"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.25a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.25b"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.25c"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.0.26a"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.1.0"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.2.0"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.3.0"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.4.0"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.5.0"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.5.12"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.5.13"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 1.1,
"vendor": "samba",
"version": "3.6.0"
},
{
"_id": null,
"model": "samba",
"scope": "lte",
"trust": 1.0,
"vendor": "samba",
"version": "3.4.15"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.8,
"vendor": "samba",
"version": "3.6.4"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.8,
"vendor": "samba",
"version": "3.4.16"
},
{
"_id": null,
"model": "samba",
"scope": "lt",
"trust": 0.8,
"vendor": "samba",
"version": "3.6.x"
},
{
"_id": null,
"model": "samba",
"scope": "lt",
"trust": 0.8,
"vendor": "samba",
"version": "3.5.x"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.8,
"vendor": "samba",
"version": "3.5.14"
},
{
"_id": null,
"model": "samba",
"scope": "lt",
"trust": 0.8,
"vendor": "samba",
"version": "3.x"
},
{
"_id": null,
"model": "c",
"scope": "eq",
"trust": 0.6,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.6,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "b",
"scope": "eq",
"trust": 0.6,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.10"
},
{
"_id": null,
"model": "hat enterprise linux eus 5.6.z server",
"scope": null,
"trust": 0.3,
"vendor": "red",
"version": null
},
{
"_id": null,
"model": "hat enterprise linux long life server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "5.3"
},
{
"_id": null,
"model": "storwize unified",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "v70001.3.0.0"
},
{
"_id": null,
"model": "hp-ux b.11.23",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"_id": null,
"model": "3.0.23a",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.4"
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.6"
},
{
"_id": null,
"model": "linux enterprise desktop sp4",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "linux ia-64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6.2"
},
{
"_id": null,
"model": "linux enterprise sdk sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "linux enterprise server sp3 ltss",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "5"
},
{
"_id": null,
"model": "3.0.27a",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "b",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.23"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.8"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.5"
},
{
"_id": null,
"model": "pre1",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "hat enterprise linux server optional",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "enterprise server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "5"
},
{
"_id": null,
"model": "storwize unified",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "v70001.3.1.0"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.2"
},
{
"_id": null,
"model": "3.0.20b",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.3"
},
{
"_id": null,
"model": "pre2",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "3.0.21b",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "3.0.21c",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.10"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.2"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.2"
},
{
"_id": null,
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"_id": null,
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.7"
},
{
"_id": null,
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.6"
},
{
"_id": null,
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2011"
},
{
"_id": null,
"model": "hat enterprise linux workstation optional",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.5"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.4"
},
{
"_id": null,
"model": "3.0.21a",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.8.4985"
},
{
"_id": null,
"model": "linux lts powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"_id": null,
"model": "business server",
"scope": "eq",
"trust": 0.3,
"vendor": "collax",
"version": "5.5"
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "rc3",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.5.2304"
},
{
"_id": null,
"model": "hat enterprise linux desktop client",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "5"
},
{
"_id": null,
"model": "linux enterprise sdk sp4",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6"
},
{
"_id": null,
"model": "linux enterprise server sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.7.2942"
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.8.6067"
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.2"
},
{
"_id": null,
"model": "c",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.21"
},
{
"_id": null,
"model": "hat enterprise linux hpc node",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.1"
},
{
"_id": null,
"model": "linux enterprise desktop sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "enterprise linux es",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "4"
},
{
"_id": null,
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.2"
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.7.3312"
},
{
"_id": null,
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.3"
},
{
"_id": null,
"model": "linux lts sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"_id": null,
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.8"
},
{
"_id": null,
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11.4"
},
{
"_id": null,
"model": "hat enterprise linux hpc node optional",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"_id": null,
"model": "3.0.23b",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "hat enterprise linux server optional 6.0.z",
"scope": null,
"trust": 0.3,
"vendor": "red",
"version": null
},
{
"_id": null,
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"_id": null,
"model": "messaging storage server sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"_id": null,
"model": "messaging storage server sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"_id": null,
"model": "3.0.20a",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.20"
},
{
"_id": null,
"model": "d",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.23"
},
{
"_id": null,
"model": "hat enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "5"
},
{
"_id": null,
"model": "linux enterprise server sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.3"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.21"
},
{
"_id": null,
"model": "storwize unified",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "v70001.3.0.5"
},
{
"_id": null,
"model": "iq",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"_id": null,
"model": "linux enterprise server gplv3 extras",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "linux enterprise server sp4",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "centos",
"scope": "eq",
"trust": 0.3,
"vendor": "centos",
"version": "6"
},
{
"_id": null,
"model": "scale out network attached storage",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.5"
},
{
"_id": null,
"model": "c",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.23"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6"
},
{
"_id": null,
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2010.1"
},
{
"_id": null,
"model": "solaris 10 sparc",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.5.2342"
},
{
"_id": null,
"model": "linux enterprise server sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.28"
},
{
"_id": null,
"model": "hat enterprise linux workstation",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "linux enterprise sdk sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux",
"scope": null,
"trust": 0.3,
"vendor": "gentoo",
"version": null
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "4"
},
{
"_id": null,
"model": "enterprise linux desktop workstation client",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "5"
},
{
"_id": null,
"model": "b",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.20"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.26"
},
{
"_id": null,
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.0"
},
{
"_id": null,
"model": "alpha",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0"
},
{
"_id": null,
"model": "rc2",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2011"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.2"
},
{
"_id": null,
"model": "linux lts lpia",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"_id": null,
"model": "hat enterprise linux server eus",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6.0"
},
{
"_id": null,
"model": "-r1",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.4"
},
{
"_id": null,
"model": "3.0.14a",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.4"
},
{
"_id": null,
"model": "samba",
"scope": "ne",
"trust": 0.3,
"vendor": "samba",
"version": "3.5.14"
},
{
"_id": null,
"model": "linux ia-32",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "sun",
"version": "11"
},
{
"_id": null,
"model": "3.0.23d",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"_id": null,
"model": "linux mips",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.5"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.4"
},
{
"_id": null,
"model": "scale out network attached storage",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.1"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6"
},
{
"_id": null,
"model": "linux enterprise desktop sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "1.0.6"
},
{
"_id": null,
"model": "aura system manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "linux enterprise server for vmware sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "12.1"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.14"
},
{
"_id": null,
"model": "rc1",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.25"
},
{
"_id": null,
"model": "hat enterprise linux server eus 6.1.z",
"scope": null,
"trust": 0.3,
"vendor": "red",
"version": null
},
{
"_id": null,
"model": "linux enterprise server for vmware sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.27"
},
{
"_id": null,
"model": "hp-ux b.11.31",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"_id": null,
"model": "aura system manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.1"
},
{
"_id": null,
"model": "solaris 10 x86",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"_id": null,
"model": "3.0.26a",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "linux s/390",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "samba",
"scope": "ne",
"trust": 0.3,
"vendor": "samba",
"version": "3.6.4"
},
{
"_id": null,
"model": "core",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "9"
},
{
"_id": null,
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"_id": null,
"model": "samba",
"scope": "ne",
"trust": 0.3,
"vendor": "samba",
"version": "3.4.16"
},
{
"_id": null,
"model": "messaging storage server sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"_id": null,
"model": "rc1",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.4"
},
{
"_id": null,
"model": "in motion blackberry playbook tablet software",
"scope": "eq",
"trust": 0.3,
"vendor": "research",
"version": "2.0.0.7971"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "3.0.23c",
"scope": null,
"trust": 0.3,
"vendor": "samba",
"version": null
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "hat enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"_id": null,
"model": "business server",
"scope": "ne",
"trust": 0.3,
"vendor": "collax",
"version": "5.5.2"
},
{
"_id": null,
"model": "solaris 9 x86",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"_id": null,
"model": "aura system manager sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "solaris 9 sparc",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"_id": null,
"model": "messaging storage server sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"_id": null,
"model": "b",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.21"
},
{
"_id": null,
"model": "hat enterprise linux desktop optional",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "enterprise server x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "5"
},
{
"_id": null,
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.2"
},
{
"_id": null,
"model": "hat enterprise linux desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"_id": null,
"model": "a",
"scope": "eq",
"trust": 0.3,
"vendor": "samba",
"version": "3.0.23"
},
{
"_id": null,
"model": "hat enterprise linux as",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "4"
},
{
"_id": null,
"model": "messaging storage server sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"_id": null,
"model": "suse core for",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "9x86"
},
{
"_id": null,
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2010.1"
},
{
"_id": null,
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.3"
},
{
"_id": null,
"model": "samba",
"scope": "eq",
"trust": 0.1,
"vendor": "samba",
"version": "3.4.15"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
},
{
"db": "VULMON",
"id": "CVE-2012-1182"
},
{
"db": "BID",
"id": "52973"
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
},
{
"db": "NVD",
"id": "CVE-2012-1182"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:samba:samba",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
}
]
},
"credits": {
"_id": null,
"data": "Anonymous",
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
}
],
"trust": 6.3
},
"cve": "CVE-2012-1182",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CVE-2012-1182",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 8.2,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "ZDI",
"id": "CVE-2012-1182",
"trust": 6.3,
"value": "HIGH"
},
{
"author": "nvd@nist.gov",
"id": "CVE-2012-1182",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2012-1182",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201204-130",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULMON",
"id": "CVE-2012-1182",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
},
{
"db": "VULMON",
"id": "CVE-2012-1182"
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
},
{
"db": "NVD",
"id": "CVE-2012-1182"
}
]
},
"description": {
"_id": null,
"data": "The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call. When parsing the data send in the request Samba uses the field \u0027settings\u0027 to create a heap allocation but then uses another field, \u0027count\u0027, to write data to the allocation. Authentication is not required to exploit this vulnerability. The specific flaw exists within Samba\u0027s handling of a NDR PULL DFS EnumArray1 request. By sending a specially crafted packet, it is possible to cause Samba to use a different size for memory allocation than it uses for a memory copy loop. This can result in memory corruption, and may be exploited by an attacker to gain remote code execution. Samba is prone to a remote-code-execution vulnerability. Failed exploit attempts will cause a denial-of-service condition. \nSamba versions 3.0 through 3.6.3 are vulnerable. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03365218\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03365218\nVersion: 1\n\nHPSBUX02789 SSRT100824 rev.1 - HP-UX CIFS Server (Samba), Remote Execution of\nArbitrary Code, Elevation of Privileges\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2012-06-13\nLast Updated: 2012-06-13\n\n ----------------------------------------------------------------------------\n- --\n\nPotential Security Impact: Remote execution of arbitrary code, elevation of\nprivileges\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP-UX\nCIFS-Server (Samba). \n\nReferences: CVE-2012-1182, CVE-2012-2111\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.23, B.11.31 running HP-UX CIFS-Server (Samba) A.03.01.04 or\nearlier\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2012-1182 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2012-2111 (AV:N/AC:L/Au:S/C:P/I:P/A:P) 6.5\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following software update to resolve the vulnerabilities. \nThe update is available for download from http://software.hp.com\n\nHP-UX CIFS-Server (Samba)\n HP-UX Release / Apache Depot name\n\nA.03.01.05\n11i v2 / B8725AA_A.03.01.05_HP-UX_B.11.23_IA_PA.depot\n\n11i v3 / CIFS-SERVER_A.03.01.05_HP-UX_B.11.31_IA_PA.depot\n\nMANUAL ACTIONS: Yes - Update\nInstall HP-UX CIFS-Server (Samba) A.03.01.05 or subsequent. \n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.23\nHP-UX B.11.31\n==================\nCIFS-Development.CIFS-PRG\nCIFS-Server.CIFS-ADMIN\nCIFS-Server.CIFS-DOC\nCIFS-Server.CIFS-LIB\nCIFS-Server.CIFS-RUN\nCIFS-Server.CIFS-UTIL\naction: install revision A.03.01.05 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 13 June 2012 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin List: A list of HP Security Bulletins, updated\nperiodically, is contained in HP Security Notice HPSN-2011-001:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c02964430\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttp://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2012 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Moderate: samba4 security, bug fix and enhancement update\nAdvisory ID: RHSA-2013:0506-02\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2013-0506.html\nIssue date: 2013-02-21\nCVE Names: CVE-2012-1182 \n=====================================================================\n\n1. Summary:\n\nUpdated samba4 packages that fix one security issue, multiple bugs, and add\nvarious enhancements are now available for Red Hat Enterprise Linux 6. \n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available from the CVE link in\nthe References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\n\n3. Description:\n\nSamba is an open-source implementation of the Server Message Block (SMB) or\nCommon Internet File System (CIFS) protocol, which allows PC-compatible\nmachines to share files, printers, and other information. \n\nA flaw was found in the Samba suite\u0027s Perl-based DCE/RPC IDL (PIDL)\ncompiler, used to generate code to handle RPC calls. (CVE-2012-1182)\n\nThe samba4 packages have been upgraded to upstream version 4.0.0, which\nprovides a number of bug fixes and enhancements over the previous version. \nIn particular, improved interoperability with Active Directory (AD)\ndomains. SSSD now uses the libndr-krb5pac library to parse the Privilege\nAttribute Certificate (PAC) issued by an AD Key Distribution Center (KDC). \n\nThe Cross Realm Kerberos Trust functionality provided by Identity\nManagement, which relies on the capabilities of the samba4 client library,\nis included as a Technology Preview. This functionality and server\nlibraries, is included as a Technology Preview. This functionality uses the\nlibndr-nbt library to prepare Connection-less Lightweight Directory Access\nProtocol (CLDAP) messages. \n\nAdditionally, various improvements have been made to the Local Security\nAuthority (LSA) and Net Logon services to allow verification of trust\nfrom a Windows system. Because the Cross Realm Kerberos Trust functionality\nis considered a Technology Preview, selected samba4 components are\nconsidered to be a Technology Preview. For more information on which Samba\npackages are considered a Technology Preview, refer to Table 5.1, \"Samba4\nPackage Support\" in the Release Notes, linked to from the References. \n(BZ#766333, BZ#882188)\n\nThis update also fixes the following bug:\n\n* Prior to this update, if the Active Directory (AD) server was rebooted,\nWinbind sometimes failed to reconnect when requested by \"wbinfo -n\" or\n\"wbinfo -s\" commands. Consequently, looking up users using the wbinfo tool\nfailed. This update applies upstream patches to fix this problem and now\nlooking up a Security Identifier (SID) for a username, or a username for a\ngiven SID, works as expected after a domain controller is rebooted. \n(BZ#878564)\n\nAll users of samba4 are advised to upgrade to these updated packages,\nwhich fix these issues and add these enhancements. \n\nWarning: If you upgrade from Red Hat Enterprise Linux 6.3 to Red Hat\nEnterprise Linux 6.4 and you have Samba in use, you should make sure that\nyou uninstall the package named \"samba4\" to avoid conflicts during the\nupgrade. \n\n4. Solution:\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n766333 - Rebase Samba4 libraries to pick up functionality required for IdM\n804093 - CVE-2012-1182 samba: Multiple heap-based buffer overflows in memory management based on NDR marshalling code output\n861892 - samba4\u0027s wbclient/smbclient provides need to be filtered to avoid confusion with samba\u0027s wbclient/smbclient provides\n864889 - Configure winbind_krb5_locator.so via alternatives to allow IPA AD trusts use\n867317 - pam_winbind.conf is not packaged in samba-winbind-clients where the module is packaged. \n867854 - auth_builtin auth_domain auth_sam and auth_winbind are built as shared modules. \n868248 - samba-winbind package wants /var/log/samba\n868419 - samba4 smb and winbind init scripts missing export KRB5CCNAME\n877085 - Wrong sysconfig filename\n878564 - IPA trust cannot always lookup AD users with wbinfo\n882188 - samba4-libs: yyin symbol collision\n885089 - Samba netlogon AES support incorrect\n886157 - samba4 should use the same winbind pipes as samba\n895718 - Incomplete rpm provides filters causes issues with the samba4-libs package on certain architectures\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm\n\ni386:\nsamba4-4.0.0-55.el6.rc4.i686.rpm\nsamba4-client-4.0.0-55.el6.rc4.i686.rpm\nsamba4-common-4.0.0-55.el6.rc4.i686.rpm\nsamba4-dc-4.0.0-55.el6.rc4.i686.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.i686.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.i686.rpm\nsamba4-devel-4.0.0-55.el6.rc4.i686.rpm\nsamba4-libs-4.0.0-55.el6.rc4.i686.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.i686.rpm\nsamba4-python-4.0.0-55.el6.rc4.i686.rpm\nsamba4-swat-4.0.0-55.el6.rc4.i686.rpm\nsamba4-test-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.i686.rpm\n\nx86_64:\nsamba4-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-client-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-common-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-devel-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-python-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-swat-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-test-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm\n\nx86_64:\nsamba4-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-client-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-common-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-devel-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-python-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-swat-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-test-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm\n\ni386:\nsamba4-4.0.0-55.el6.rc4.i686.rpm\nsamba4-client-4.0.0-55.el6.rc4.i686.rpm\nsamba4-common-4.0.0-55.el6.rc4.i686.rpm\nsamba4-dc-4.0.0-55.el6.rc4.i686.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.i686.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.i686.rpm\nsamba4-devel-4.0.0-55.el6.rc4.i686.rpm\nsamba4-libs-4.0.0-55.el6.rc4.i686.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.i686.rpm\nsamba4-python-4.0.0-55.el6.rc4.i686.rpm\nsamba4-swat-4.0.0-55.el6.rc4.i686.rpm\nsamba4-test-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.i686.rpm\n\nppc64:\nsamba4-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-client-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-common-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-dc-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-devel-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-libs-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-python-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-swat-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-test-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.ppc64.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.ppc64.rpm\n\ns390x:\nsamba4-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-client-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-common-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-dc-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-devel-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-libs-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-python-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-swat-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-test-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.s390x.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.s390x.rpm\n\nx86_64:\nsamba4-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-client-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-common-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-devel-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-python-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-swat-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-test-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/samba4-4.0.0-55.el6.rc4.src.rpm\n\ni386:\nsamba4-4.0.0-55.el6.rc4.i686.rpm\nsamba4-client-4.0.0-55.el6.rc4.i686.rpm\nsamba4-common-4.0.0-55.el6.rc4.i686.rpm\nsamba4-dc-4.0.0-55.el6.rc4.i686.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.i686.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.i686.rpm\nsamba4-devel-4.0.0-55.el6.rc4.i686.rpm\nsamba4-libs-4.0.0-55.el6.rc4.i686.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.i686.rpm\nsamba4-python-4.0.0-55.el6.rc4.i686.rpm\nsamba4-swat-4.0.0-55.el6.rc4.i686.rpm\nsamba4-test-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.i686.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.i686.rpm\n\nx86_64:\nsamba4-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-client-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-common-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-dc-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-debuginfo-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-devel-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-libs-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-pidl-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-python-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-swat-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-test-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-clients-4.0.0-55.el6.rc4.x86_64.rpm\nsamba4-winbind-krb5-locator-4.0.0-55.el6.rc4.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2012-1182.html\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.4_Release_Notes/index.html\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2013 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFRJb/SXlSAg2UNWIIRAu9pAJ0bXOSJ3SN3aR3fw5MGSEkMJi3lMgCdGerb\nYlk6a0Ez2DTp2M59lbdEswI=\n=joFH\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. Description:\n\nThe openchange packages provide libraries to access Microsoft Exchange\nservers using native protocols. Evolution-MAPI uses these libraries to\nintegrate the Evolution PIM application with Microsoft Exchange servers. With\nthis update, the code has been generated with an updated version of PIDL to\ncorrect this issue. \n(BZ#767672, BZ#767678)\n\nThis update also fixes the following bugs:\n\n* When the user tried to modify a meeting with one required attendee and\nhimself as the organizer, a segmentation fault occurred in the memcpy()\nfunction. Consequently, the evolution-data-server application terminated\nunexpectedly with a segmentation fault. This bug has been fixed and\nevolution-data-server no longer crashes in the described scenario. \n(BZ#680061)\n\n* Prior to this update, OpenChange 1.0 was unable to send messages with\na large message body or with extensive attachment. This was caused by minor\nissues in OpenChange\u0027s exchange.idl definitions. This bug has been fixed\nand OpenChange now sends extensive messages without complications. After installing this\nupdate, the smb service will be restarted automatically. Content-Disposition: inline\n\n==========================================================================Ubuntu Security Notice USN-1423-1\nApril 13, 2012\n\nsamba vulnerability\n==========================================================================\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 11.10\n- Ubuntu 11.04\n- Ubuntu 10.04 LTS\n- Ubuntu 8.04 LTS\n\nSummary:\n\nSamba could be made to run programs as the administrator if it received\nspecially crafted network traffic. \n\nSoftware Description:\n- samba: SMB/CIFS file, print, and login server for Unix\n\nDetails:\n\nBrian Gorenc discovered that Samba incorrectly calculated array bounds when\nhandling remote procedure calls (RPC) over the network. (CVE-2012-1182)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 11.10:\n samba 2:3.5.11~dfsg-1ubuntu2.2\n\nUbuntu 11.04:\n samba 2:3.5.8~dfsg-1ubuntu2.4\n\nUbuntu 10.04 LTS:\n samba 2:3.4.7~dfsg-1ubuntu3.9\n\nUbuntu 8.04 LTS:\n samba 3.0.28a-1ubuntu4.18\n\nIn general, a standard system update will make all the necessary changes",
"sources": [
{
"db": "NVD",
"id": "CVE-2012-1182"
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "BID",
"id": "52973"
},
{
"db": "PACKETSTORM",
"id": "113904"
},
{
"db": "PACKETSTORM",
"id": "120435"
},
{
"db": "PACKETSTORM",
"id": "120441"
},
{
"db": "PACKETSTORM",
"id": "111737"
},
{
"db": "PACKETSTORM",
"id": "111839"
},
{
"db": "VULMON",
"id": "CVE-2012-1182"
}
],
"trust": 8.1
},
"exploit_availability": {
"_id": null,
"data": [
{
"reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=21850",
"trust": 0.1,
"type": "exploit"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2012-1182"
}
]
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2012-1182",
"trust": 9.6
},
{
"db": "SECUNIA",
"id": "48816",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48818",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48844",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48751",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48754",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48873",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48879",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "48999",
"trust": 1.1
},
{
"db": "SECTRACK",
"id": "1026913",
"trust": 1.1
},
{
"db": "ZDI",
"id": "ZDI-12-071",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-068",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-062",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-072",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-061",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-070",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-069",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-064",
"trust": 1.0
},
{
"db": "ZDI",
"id": "ZDI-12-063",
"trust": 1.0
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1505",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1503",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1538",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1530",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1540",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1506",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1504",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1539",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1537",
"trust": 0.7
},
{
"db": "NSFOCUS",
"id": "19335",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130",
"trust": 0.6
},
{
"db": "BID",
"id": "52973",
"trust": 0.4
},
{
"db": "EXPLOIT-DB",
"id": "21850",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2012-1182",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "113904",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "120435",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "120441",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "111737",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "111839",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
},
{
"db": "VULMON",
"id": "CVE-2012-1182"
},
{
"db": "BID",
"id": "52973"
},
{
"db": "PACKETSTORM",
"id": "113904"
},
{
"db": "PACKETSTORM",
"id": "120435"
},
{
"db": "PACKETSTORM",
"id": "120441"
},
{
"db": "PACKETSTORM",
"id": "111737"
},
{
"db": "PACKETSTORM",
"id": "111839"
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
},
{
"db": "NVD",
"id": "CVE-2012-1182"
}
]
},
"id": "VAR-201204-0112",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.5574074
},
"last_update_date": "2026-03-09T21:59:21.890000Z",
"patch": {
"_id": null,
"data": [
{
"title": "CVE-2012-1182",
"trust": 7.1,
"url": "https://www.samba.org/samba/security/CVE-2012-1182"
},
{
"title": "HT5281",
"trust": 0.8,
"url": "http://support.apple.com/kb/HT5281"
},
{
"title": "FEDORA-2012-6382",
"trust": 0.8,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080567.html"
},
{
"title": "CVE-2012-1182",
"trust": 0.8,
"url": "https://access.redhat.com/security/cve/CVE-2012-1182"
},
{
"title": "RHSA-2012:0465-1 Critical: samba security update",
"trust": 0.8,
"url": "https://rhn.redhat.com/errata/RHSA-2012-0465.html"
},
{
"title": "RHSA-2012:0466-1 Critical: samba3x security update",
"trust": 0.8,
"url": "https://rhn.redhat.com/errata/RHSA-2012-0466.html"
},
{
"title": "CVE-2012-1182 Arbitrary code execution vulnerability in Samba",
"trust": 0.8,
"url": "https://blogs.oracle.com/sunsecurity/entry/cve_2012_1182_arbitrary_code"
},
{
"title": "USN-1423-1",
"trust": 0.8,
"url": "http://www.ubuntu.com/usn/USN-1423-1"
},
{
"title": "Samba-JP Wiki \u30e1\u30a4\u30f3\u30da\u30fc\u30b8",
"trust": 0.8,
"url": "http://wiki.samba.gr.jp/mediawiki/index.php"
},
{
"title": "samba-3.4.16",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=42873"
},
{
"title": "samba-3.5.14",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=42872"
},
{
"title": "samba-3.6.4",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=42871"
},
{
"title": "Red Hat: Moderate: openchange security, bug fix and enhancement update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20130515 - Security Advisory"
},
{
"title": "Red Hat: Critical: samba security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20120465 - Security Advisory"
},
{
"title": "Red Hat: Critical: samba3x security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20120466 - Security Advisory"
},
{
"title": "Red Hat: Critical: samba security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20120478 - Security Advisory"
},
{
"title": "Red Hat: Moderate: samba4 security, bug fix and enhancement update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20130506 - Security Advisory"
},
{
"title": "Debian CVElist Bug Report Logs: samba: remote code execution (CVE-2012-1182)",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=f388f45ecb705c4c60e4f77799d0c220"
},
{
"title": "Ubuntu Security Notice: samba vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-1423-1"
},
{
"title": "Debian Security Advisories: DSA-2450-1 samba -- privilege escalation",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=71368d3db203816c572e4433d9958611"
},
{
"title": "Information_Collection_Handbook",
"trust": 0.1,
"url": "https://github.com/Qftm/Information_Collection_Handbook "
},
{
"title": "RedTeamPlaybook",
"trust": 0.1,
"url": "https://github.com/esteban0477/RedTeamPlaybook "
},
{
"title": "code-snippets-bash",
"trust": 0.1,
"url": "https://github.com/NullMode/code-snippets-bash "
},
{
"title": "python-nmap",
"trust": 0.1,
"url": "https://github.com/kaanyeniyol/python-nmap "
},
{
"title": "OSCP-Prep",
"trust": 0.1,
"url": "https://github.com/superhero1/OSCP-Prep "
},
{
"title": "rt-n56u",
"trust": 0.1,
"url": "https://github.com/joneswu456/rt-n56u "
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
},
{
"db": "VULMON",
"id": "CVE-2012-1182"
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-189",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
},
{
"db": "NVD",
"id": "CVE-2012-1182"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 8.3,
"url": "https://www.samba.org/samba/security/cve-2012-1182"
},
{
"trust": 1.4,
"url": "http://www.samba.org/samba/history/samba-3.6.4.html"
},
{
"trust": 1.2,
"url": "http://www.ubuntu.com/usn/usn-1423-1"
},
{
"trust": 1.1,
"url": "http://lists.apple.com/archives/security-announce/2012/may/msg00001.html"
},
{
"trust": 1.1,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-april/078258.html"
},
{
"trust": 1.1,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-april/078726.html"
},
{
"trust": 1.1,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-april/078836.html"
},
{
"trust": 1.1,
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-may/080567.html"
},
{
"trust": 1.1,
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00007.html"
},
{
"trust": 1.1,
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00008.html"
},
{
"trust": 1.1,
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00009.html"
},
{
"trust": 1.1,
"url": "http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00014.html"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=133951282306605\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=134323086902585\u0026w=2"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48751"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48754"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48816"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48818"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48844"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48873"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48879"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/48999"
},
{
"trust": 1.1,
"url": "http://support.apple.com/kb/ht5281"
},
{
"trust": 1.1,
"url": "http://www.collax.com/produkte/allinone-server-for-small-businesses#id2565578"
},
{
"trust": 1.1,
"url": "http://www.debian.org/security/2012/dsa-2450"
},
{
"trust": 1.1,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2012:055"
},
{
"trust": 1.1,
"url": "http://www.securitytracker.com/id?1026913"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-1182"
},
{
"trust": 0.8,
"url": "http://jvn.jp/cert/jvnvu692779/"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-1182"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/19335"
},
{
"trust": 0.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1182"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/cve/cve-2012-1182"
},
{
"trust": 0.3,
"url": "http://www.collax.com/produkte/die-komplettloesung-fuer-kleine-unternehmen"
},
{
"trust": 0.3,
"url": "http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c03365218\u0026ac.admitted=1339650390917.876444892.492883150"
},
{
"trust": 0.3,
"url": "http://www.samba.org"
},
{
"trust": 0.3,
"url": "http://www-304.ibm.com/support/docview.wss?uid=ssg1s1004108"
},
{
"trust": 0.3,
"url": "http://www-304.ibm.com/support/docview.wss?uid=ssg1s1004109"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/100161399"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/100161830"
},
{
"trust": 0.3,
"url": "http://www.blackberry.com/btsc/kb32189"
},
{
"trust": 0.3,
"url": "https://blogs.oracle.com/sunsecurity/entry/cve_2012_1182_arbitrary_code"
},
{
"trust": 0.3,
"url": "http://www.itrc.hp.com/service/cki/docdisplay.do?docid=emr_na-c03366886"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-061"
},
{
"trust": 0.3,
"url": "www.zerodayinitiative.com/advisories/zdi-12-062"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-063"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-064"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-068"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-069"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-070"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-071"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-072"
},
{
"trust": 0.3,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.3,
"url": "https://www.redhat.com/security/data/cve/cve-2012-1182.html"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/security/team/key/#package"
},
{
"trust": 0.3,
"url": "http://bugzilla.redhat.com/):"
},
{
"trust": 0.3,
"url": "https://access.redhat.com/knowledge/articles/11258"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/189.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2013:0515"
},
{
"trust": 0.1,
"url": "https://github.com/qftm/information_collection_handbook"
},
{
"trust": 0.1,
"url": "https://github.com/nullmode/code-snippets-bash"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://www.exploit-db.com/exploits/21850/"
},
{
"trust": 0.1,
"url": "https://www.rapid7.com/db/vulnerabilities/alpine-linux-cve-2012-1182"
},
{
"trust": 0.1,
"url": "https://www.securityfocus.com/bid/52973"
},
{
"trust": 0.1,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=25650"
},
{
"trust": 0.1,
"url": "https://usn.ubuntu.com/1423-1/"
},
{
"trust": 0.1,
"url": "http://software.hp.com"
},
{
"trust": 0.1,
"url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.1,
"url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
},
{
"trust": 0.1,
"url": "https://www.hp.com/go/swa"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-2111"
},
{
"trust": 0.1,
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.1,
"url": "https://rhn.redhat.com/errata/rhsa-2013-0506.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/knowledge/docs/en-us/red_hat_enterprise_linux/6/html/6.4_release_notes/index.html"
},
{
"trust": 0.1,
"url": "https://rhn.redhat.com/errata/rhsa-2013-0515.html"
},
{
"trust": 0.1,
"url": "https://rhn.redhat.com/errata/rhsa-2012-0466.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/samba/2:3.5.11~dfsg-1ubuntu2.2"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/samba/2:3.5.8~dfsg-1ubuntu2.4"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/samba/3.0.28a-1ubuntu4.18"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/samba/2:3.4.7~dfsg-1ubuntu3.9"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-071"
},
{
"db": "ZDI",
"id": "ZDI-12-068"
},
{
"db": "ZDI",
"id": "ZDI-12-062"
},
{
"db": "ZDI",
"id": "ZDI-12-072"
},
{
"db": "ZDI",
"id": "ZDI-12-061"
},
{
"db": "ZDI",
"id": "ZDI-12-070"
},
{
"db": "ZDI",
"id": "ZDI-12-069"
},
{
"db": "ZDI",
"id": "ZDI-12-064"
},
{
"db": "ZDI",
"id": "ZDI-12-063"
},
{
"db": "VULMON",
"id": "CVE-2012-1182"
},
{
"db": "BID",
"id": "52973"
},
{
"db": "PACKETSTORM",
"id": "113904"
},
{
"db": "PACKETSTORM",
"id": "120435"
},
{
"db": "PACKETSTORM",
"id": "120441"
},
{
"db": "PACKETSTORM",
"id": "111737"
},
{
"db": "PACKETSTORM",
"id": "111839"
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
},
{
"db": "NVD",
"id": "CVE-2012-1182"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-12-071",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-068",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-062",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-072",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-061",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-070",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-069",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-064",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-12-063",
"ident": null
},
{
"db": "VULMON",
"id": "CVE-2012-1182",
"ident": null
},
{
"db": "BID",
"id": "52973",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "113904",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "120435",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "120441",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "111737",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "111839",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2011-005032",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2012-1182",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-071",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-068",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-062",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-072",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-061",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-070",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-069",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-064",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-063",
"ident": null
},
{
"date": "2012-04-10T00:00:00",
"db": "VULMON",
"id": "CVE-2012-1182",
"ident": null
},
{
"date": "2012-04-10T00:00:00",
"db": "BID",
"id": "52973",
"ident": null
},
{
"date": "2012-06-19T18:18:00",
"db": "PACKETSTORM",
"id": "113904",
"ident": null
},
{
"date": "2013-02-21T16:26:26",
"db": "PACKETSTORM",
"id": "120435",
"ident": null
},
{
"date": "2013-02-21T16:27:45",
"db": "PACKETSTORM",
"id": "120441",
"ident": null
},
{
"date": "2012-04-11T14:21:17",
"db": "PACKETSTORM",
"id": "111737",
"ident": null
},
{
"date": "2012-04-13T19:37:57",
"db": "PACKETSTORM",
"id": "111839",
"ident": null
},
{
"date": "2012-04-11T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201204-130",
"ident": null
},
{
"date": "2012-04-12T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2011-005032",
"ident": null
},
{
"date": "2012-04-10T21:55:02.203000",
"db": "NVD",
"id": "CVE-2012-1182",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-071",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-068",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-062",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-072",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-061",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-070",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-069",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-064",
"ident": null
},
{
"date": "2012-04-18T00:00:00",
"db": "ZDI",
"id": "ZDI-12-063",
"ident": null
},
{
"date": "2018-10-30T00:00:00",
"db": "VULMON",
"id": "CVE-2012-1182",
"ident": null
},
{
"date": "2015-04-13T21:38:00",
"db": "BID",
"id": "52973",
"ident": null
},
{
"date": "2012-08-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201204-130",
"ident": null
},
{
"date": "2012-09-05T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2011-005032",
"ident": null
},
{
"date": "2025-04-11T00:51:21.963000",
"db": "NVD",
"id": "CVE-2012-1182",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "PACKETSTORM",
"id": "111737"
},
{
"db": "PACKETSTORM",
"id": "111839"
},
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
}
],
"trust": 0.8
},
"title": {
"_id": null,
"data": "Samba of RPC Code generator vulnerable to arbitrary code execution",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2011-005032"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "digital error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201204-130"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…