Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2004-0082

The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.

  • Published: Mar 3, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-0082
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
samba / samba 3.0.0 3.0.0.x
samba / samba 3.0.1 3.0.1.x