Skip to content

CVE listings for Windows SMB vulnerabilities

License

Notifications You must be signed in to change notification settings

eaglesquads/SMB-CVE

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
 
 
 
 
 
 

Repository files navigation

SMB-CVE

CVE listings for Windows SMB vulnerabilities

SMB Server Vulnerabilities

These could be in any of the SMB drivers and their supporting services.

Bulletin Type CVE Description
MS02-070RCECAN-2002-1256Flaw in SMB Signing Could Enable Group Policy to be Modified
MS03-024RCECAN-2003-0345Buffer overflow in the SMB capability
MS05-011RCECAN-2005-0045Trans2 FIND_FIRST2 responses with large file name length fields
MS05-027RCECAN-2005-1206Server Message Block Vulnerability
MS06-030EOPCVE-2006-2373SMB Driver Elevation of Privilege Vulnerability
MS06-030DOSCVE-2006-2374SMB Invalid Handle Vulnerability
MS06-035RCECVE-2006-1314Mailslot Heap Overflow Vulnerability
MS06-035INFOCVE-2006-1315SMB Information Disclosure Vulnerability
MS06-040RCECVE-2006-3439Buffer Overrun in Server Service Vulnerability
MS06-063DOSCVE-2006-3942Server Service Denial of Service Vulnerability
MS08-063RCECVE-2008-4038SMB Buffer Underflow Vulnerability
MS08-067RCECVE-2008-4250Server Service Vulnerability overflow during path canonicalization
MS08-068RCECVE-2008-4037SMB Credential Reflection Vulnerability SMBRelay
MS09-001RCECVE-2008-4834SMB Buffer Overflow Remote Code Execution Vulnerability
MS09-001RCECVE-2008-4835SMB Validation Remote Code Execution Vulnerability
MS09-001DOSCVE-2008-4835SMB Validation Remote Code Execution Vulnerability
MS09-050DOSCVE-2009-2526SMBv2 Infinite Loop Vulnerability
MS09-050RCECVE-2009-2532SMBv2 Command Value Vulnerability
MS09-050RCECVE-2009-3103SMBv2 Negotiation Vulnerability
MS10-012RCECVE-2010-0020SMB Pathname Overflow Vulnerability
MS10-012DOSCVE-2010-0021SMB Memory Corruption Vulnerability
MS10-012DOSCVE-2010-0022SMB Null Pointer Vulnerability
MS10-012EOPCVE-2010-0231SMB NTLM Authentication Lack of Entropy Vulnerability
MS10-054RCE/EOPCVE-2010-2550SMB Pool Overflow Vulnerability
MS10-054DOSCVE-2010-2551SMB Variable Validation Vulnerability
MS10-054DOSCVE-2010-2552SMB Stack Exhaustion Vulnerability
MS11-020RCECVE-2011-0661SMB Transaction Parsing Vulnerability
MS15-083RCECVE-2015-2474Server Message Block Memory Corruption Vulnerability
MS16-114RCE/DOSCVE-2016-3345Windows SMB Authenticated Remote Code Execution Vulnerability
MS17-010RCECVE-2017-0143ETERNALROMANCE/ETERNALSYNERGY - WriteAndX and Trans
MS17-010RCECVE-2017-0144ETERNALBLUE - Integer overflow SrvOs2FeaListSizeToNt
MS17-010RCECVE-2017-0145??? - Integer overflow SrvOs2GeaListSizeToNt?
MS17-010RCECVE-2017-0146ETERNALCHAMPION/ETERNALSYNERGY Trans race condition
MS17-010INFOCVE-2017-0147ETERNALROMANCE - Info leak SrvPeekNamedPipe
MS17-010RCECVE-2017-0148??? - Pool overflow extended create?

About

CVE listings for Windows SMB vulnerabilities

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published