{"url":"http://public2.vulnerablecode.io/api/packages/103436?format=json","purl":"pkg:deb/debian/samba@3.0.7?distro=trixie","type":"deb","namespace":"debian","name":"samba","version":"3.0.7","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"3.0.8-1","latest_non_vulnerable_version":"2:4.24.3+dfsg-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199745?format=json","vulnerability_id":"VCID-384p-jert-1qg9","summary":"Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small \"maximum data bytes\" value.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0882.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0882.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0882","reference_id":"","reference_type":"","scores":[{"value":"0.46754","scoring_system":"epss","scoring_elements":"0.97739","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0882"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0882","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0882"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617311","reference_id":"1617311","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617311"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:632","reference_id":"RHSA-2004:632","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:632"},{"reference_url":"https://usn.ubuntu.com/29-1/","reference_id":"USN-29-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/29-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/103436?format=json","purl":"pkg:deb/debian/samba@3.0.7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@3.0.7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103429?format=json","purl":"pkg:deb/debian/samba@2:4.13.13%2Bdfsg-1~deb11u6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1m3d-ctru-6qb5"},{"vulnerability":"VCID-4vy2-2ad3-4qfn"},{"vulnerability":"VCID-5g5s-4fh4-gqcj"},{"vulnerability":"VCID-79ds-v7mt-3uap"},{"vulnerability":"VCID-7huu-vqhk-qfhd"},{"vulnerability":"VCID-7ypj-aq1a-5ubc"},{"vulnerability":"VCID-81eu-q8nr-4bef"},{"vulnerability":"VCID-9umr-u4nv-1kf6"},{"vulnerability":"VCID-a71y-ay8g-6kab"},{"vulnerability":"VCID-a8je-137h-q3gj"},{"vulnerability":"VCID-bmuf-e1mm-hfg2"},{"vulnerability":"VCID-cuye-9uen-zbbu"},{"vulnerability":"VCID-d3n7-r4tx-cye2"},{"vulnerability":"VCID-efmd-sajq-9ybh"},{"vulnerability":"VCID-egvq-zduv-d7ej"},{"vulnerability":"VCID-q3dg-1h8w-vbh6"},{"vulnerability":"VCID-rckq-8uwu-vkby"},{"vulnerability":"VCID-rj6c-2eue-syac"},{"vulnerability":"VCID-sfbg-vws5-4bff"},{"vulnerability":"VCID-sxn5-gv35-tkce"},{"vulnerability":"VCID-tr2s-wyxe-n3ek"},{"vulnerability":"VCID-ufu7-mvkx-jkfb"},{"vulnerability":"VCID-v3wh-ptdq-eye3"},{"vulnerability":"VCID-vveg-8shy-v7ht"},{"vulnerability":"VCID-xu6g-dbzv-g3av"},{"vulnerability":"VCID-zfu9-8wzd-wkcj"},{"vulnerability":"VCID-zub9-c368-g3ge"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.13.13%252Bdfsg-1~deb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103427?format=json","purl":"pkg:deb/debian/samba@2:4.17.12%2Bdfsg-0%2Bdeb12u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.17.12%252Bdfsg-0%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103431?format=json","purl":"pkg:deb/debian/samba@2:4.22.8%2Bdfsg-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.22.8%252Bdfsg-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103430?format=json","purl":"pkg:deb/debian/samba@2:4.24.3%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.24.3%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2004-0882"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-384p-jert-1qg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199737?format=json","vulnerability_id":"VCID-9nub-tkg2-w3ga","summary":"Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0807.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0807.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0807","reference_id":"","reference_type":"","scores":[{"value":"0.09849","scoring_system":"epss","scoring_elements":"0.93156","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0807"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0807","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0807"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617297","reference_id":"1617297","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617297"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:467","reference_id":"RHSA-2004:467","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:467"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/103436?format=json","purl":"pkg:deb/debian/samba@3.0.7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@3.0.7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103429?format=json","purl":"pkg:deb/debian/samba@2:4.13.13%2Bdfsg-1~deb11u6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1m3d-ctru-6qb5"},{"vulnerability":"VCID-4vy2-2ad3-4qfn"},{"vulnerability":"VCID-5g5s-4fh4-gqcj"},{"vulnerability":"VCID-79ds-v7mt-3uap"},{"vulnerability":"VCID-7huu-vqhk-qfhd"},{"vulnerability":"VCID-7ypj-aq1a-5ubc"},{"vulnerability":"VCID-81eu-q8nr-4bef"},{"vulnerability":"VCID-9umr-u4nv-1kf6"},{"vulnerability":"VCID-a71y-ay8g-6kab"},{"vulnerability":"VCID-a8je-137h-q3gj"},{"vulnerability":"VCID-bmuf-e1mm-hfg2"},{"vulnerability":"VCID-cuye-9uen-zbbu"},{"vulnerability":"VCID-d3n7-r4tx-cye2"},{"vulnerability":"VCID-efmd-sajq-9ybh"},{"vulnerability":"VCID-egvq-zduv-d7ej"},{"vulnerability":"VCID-q3dg-1h8w-vbh6"},{"vulnerability":"VCID-rckq-8uwu-vkby"},{"vulnerability":"VCID-rj6c-2eue-syac"},{"vulnerability":"VCID-sfbg-vws5-4bff"},{"vulnerability":"VCID-sxn5-gv35-tkce"},{"vulnerability":"VCID-tr2s-wyxe-n3ek"},{"vulnerability":"VCID-ufu7-mvkx-jkfb"},{"vulnerability":"VCID-v3wh-ptdq-eye3"},{"vulnerability":"VCID-vveg-8shy-v7ht"},{"vulnerability":"VCID-xu6g-dbzv-g3av"},{"vulnerability":"VCID-zfu9-8wzd-wkcj"},{"vulnerability":"VCID-zub9-c368-g3ge"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.13.13%252Bdfsg-1~deb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103427?format=json","purl":"pkg:deb/debian/samba@2:4.17.12%2Bdfsg-0%2Bdeb12u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.17.12%252Bdfsg-0%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103431?format=json","purl":"pkg:deb/debian/samba@2:4.22.8%2Bdfsg-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.22.8%252Bdfsg-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103430?format=json","purl":"pkg:deb/debian/samba@2:4.24.3%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.24.3%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2004-0807"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9nub-tkg2-w3ga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199739?format=json","vulnerability_id":"VCID-den5-6cvf-eucb","summary":"The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures that are provided.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0808.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0808.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0808","reference_id":"","reference_type":"","scores":[{"value":"0.07869","scoring_system":"epss","scoring_elements":"0.92197","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0808"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0808","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0808"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617298","reference_id":"1617298","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617298"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:467","reference_id":"RHSA-2004:467","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:467"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/103436?format=json","purl":"pkg:deb/debian/samba@3.0.7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@3.0.7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103429?format=json","purl":"pkg:deb/debian/samba@2:4.13.13%2Bdfsg-1~deb11u6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1m3d-ctru-6qb5"},{"vulnerability":"VCID-4vy2-2ad3-4qfn"},{"vulnerability":"VCID-5g5s-4fh4-gqcj"},{"vulnerability":"VCID-79ds-v7mt-3uap"},{"vulnerability":"VCID-7huu-vqhk-qfhd"},{"vulnerability":"VCID-7ypj-aq1a-5ubc"},{"vulnerability":"VCID-81eu-q8nr-4bef"},{"vulnerability":"VCID-9umr-u4nv-1kf6"},{"vulnerability":"VCID-a71y-ay8g-6kab"},{"vulnerability":"VCID-a8je-137h-q3gj"},{"vulnerability":"VCID-bmuf-e1mm-hfg2"},{"vulnerability":"VCID-cuye-9uen-zbbu"},{"vulnerability":"VCID-d3n7-r4tx-cye2"},{"vulnerability":"VCID-efmd-sajq-9ybh"},{"vulnerability":"VCID-egvq-zduv-d7ej"},{"vulnerability":"VCID-q3dg-1h8w-vbh6"},{"vulnerability":"VCID-rckq-8uwu-vkby"},{"vulnerability":"VCID-rj6c-2eue-syac"},{"vulnerability":"VCID-sfbg-vws5-4bff"},{"vulnerability":"VCID-sxn5-gv35-tkce"},{"vulnerability":"VCID-tr2s-wyxe-n3ek"},{"vulnerability":"VCID-ufu7-mvkx-jkfb"},{"vulnerability":"VCID-v3wh-ptdq-eye3"},{"vulnerability":"VCID-vveg-8shy-v7ht"},{"vulnerability":"VCID-xu6g-dbzv-g3av"},{"vulnerability":"VCID-zfu9-8wzd-wkcj"},{"vulnerability":"VCID-zub9-c368-g3ge"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.13.13%252Bdfsg-1~deb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103427?format=json","purl":"pkg:deb/debian/samba@2:4.17.12%2Bdfsg-0%2Bdeb12u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.17.12%252Bdfsg-0%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103431?format=json","purl":"pkg:deb/debian/samba@2:4.22.8%2Bdfsg-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.22.8%252Bdfsg-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103430?format=json","purl":"pkg:deb/debian/samba@2:4.24.3%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.24.3%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2004-0808"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-den5-6cvf-eucb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199655?format=json","vulnerability_id":"VCID-zzjc-cfvv-hugm","summary":"The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0082.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0082.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0082","reference_id":"","reference_type":"","scores":[{"value":"0.02082","scoring_system":"epss","scoring_elements":"0.84357","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0082"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0082","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0082"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617143","reference_id":"1617143","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617143"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:064","reference_id":"RHSA-2004:064","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:064"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/103436?format=json","purl":"pkg:deb/debian/samba@3.0.7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@3.0.7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103429?format=json","purl":"pkg:deb/debian/samba@2:4.13.13%2Bdfsg-1~deb11u6?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1m3d-ctru-6qb5"},{"vulnerability":"VCID-4vy2-2ad3-4qfn"},{"vulnerability":"VCID-5g5s-4fh4-gqcj"},{"vulnerability":"VCID-79ds-v7mt-3uap"},{"vulnerability":"VCID-7huu-vqhk-qfhd"},{"vulnerability":"VCID-7ypj-aq1a-5ubc"},{"vulnerability":"VCID-81eu-q8nr-4bef"},{"vulnerability":"VCID-9umr-u4nv-1kf6"},{"vulnerability":"VCID-a71y-ay8g-6kab"},{"vulnerability":"VCID-a8je-137h-q3gj"},{"vulnerability":"VCID-bmuf-e1mm-hfg2"},{"vulnerability":"VCID-cuye-9uen-zbbu"},{"vulnerability":"VCID-d3n7-r4tx-cye2"},{"vulnerability":"VCID-efmd-sajq-9ybh"},{"vulnerability":"VCID-egvq-zduv-d7ej"},{"vulnerability":"VCID-q3dg-1h8w-vbh6"},{"vulnerability":"VCID-rckq-8uwu-vkby"},{"vulnerability":"VCID-rj6c-2eue-syac"},{"vulnerability":"VCID-sfbg-vws5-4bff"},{"vulnerability":"VCID-sxn5-gv35-tkce"},{"vulnerability":"VCID-tr2s-wyxe-n3ek"},{"vulnerability":"VCID-ufu7-mvkx-jkfb"},{"vulnerability":"VCID-v3wh-ptdq-eye3"},{"vulnerability":"VCID-vveg-8shy-v7ht"},{"vulnerability":"VCID-xu6g-dbzv-g3av"},{"vulnerability":"VCID-zfu9-8wzd-wkcj"},{"vulnerability":"VCID-zub9-c368-g3ge"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.13.13%252Bdfsg-1~deb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103427?format=json","purl":"pkg:deb/debian/samba@2:4.17.12%2Bdfsg-0%2Bdeb12u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.17.12%252Bdfsg-0%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103431?format=json","purl":"pkg:deb/debian/samba@2:4.22.8%2Bdfsg-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.22.8%252Bdfsg-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103430?format=json","purl":"pkg:deb/debian/samba@2:4.24.3%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@2:4.24.3%252Bdfsg-1%3Fdistro=trixie"}],"aliases":["CVE-2004-0082"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zzjc-cfvv-hugm"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/samba@3.0.7%3Fdistro=trixie"}