Unrated severityNVD Advisory· Published Mar 3, 2004· Updated Jun 16, 2026
CVE-2004-0082
CVE-2004-0082
Description
The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:3.0.1:*:*:*:*:*:*:*
- (no CPE)range: 3.0.0, 3.0.1
Patches
Vulnerability mechanics
References
8- www.redhat.com/support/errata/RHSA-2004-064.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/9637nvdPatchVendor Advisory
- us1.samba.org/samba/ftp/WHATSNEW-3.0.2a.txtnvd
- www.ciac.org/ciac/bulletins/o-078.shtmlnvd
- www.osvdb.org/3919nvd
- www.vuxml.org/freebsd/3388eff9-5d6e-11d8-80e3-0020ed76ef5a.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15132nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A827nvd
News mentions
0No linked articles in our index yet.