CVE-2009-1886 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2009-1886

Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename.

Published: Jun 25, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-1886
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-134

Affected Software
References

Software	From	Fixed in
samba / samba	3.2.5	3.2.5.x
samba / samba	3.2.3	3.2.3.x
samba / samba	3.2.4	3.2.4.x
samba / samba	3.2.1	3.2.1.x
samba / samba	3.2.9	3.2.9.x
samba / samba	3.2.2	3.2.2.x
samba / samba	3.2.7	3.2.7.x
samba / samba	3.2.10	3.2.10.x
samba / samba	3.2.12	3.2.12.x
samba / samba	3.2.8	3.2.8.x
samba / samba	3.2.11	3.2.11.x
samba / samba	3.2.0	3.2.0.x
samba / samba	3.2.6	3.2.6.x