VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 15, 2010· Updated Apr 29, 2026

CVE-2010-3069

CVE-2010-3069

Description

Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share.

Affected products

7
  • Samba (software)/Samba
    cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*
    Range: >=3.0.0,<=3.3.14
  • Canonical/Ubuntu Linux5 versions
    cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 4 more
    • cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
  • osv-coords
    pkg:rpm/opensuse/samba&distro=openSUSE%20Tumbleweed
    Range: < 4.5.0-1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

26

News mentions

0

No linked articles in our index yet.