VulnerableCode Vulnerability Details - VCID-3c73-fpmu-ebd1

Search for vulnerabilities

Vulnerability details: VCID-3c73-fpmu-ebd1

Essentials
Severities (8)
References (10)
Severity details (0)
Exploits (2)
EPSS
History (1)

Vulnerability ID	VCID-3c73-fpmu-ebd1
Aliases	CVE-2013-4124
Summary
Status	Published
Exploitability	2.0
Weighted Severity	0.8
Risk	1.6
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-190

Integer Overflow or Wraparound

System	Score	Found at
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124
epss	0.86808	https://api.first.org/data/v1/epss?cve=CVE-2013-4124

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4124.json
		https://api.first.org/data/v1/epss?cve=CVE-2013-4124
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4124
984401		https://bugzilla.redhat.com/show_bug.cgi?id=984401
CVE-2013-4124;OSVDB-95969	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/27778.txt
RHSA-2013:1310		https://access.redhat.com/errata/RHSA-2013:1310
RHSA-2013:1542		https://access.redhat.com/errata/RHSA-2013:1542
RHSA-2013:1543		https://access.redhat.com/errata/RHSA-2013:1543
RHSA-2014:0305		https://access.redhat.com/errata/RHSA-2014:0305
USN-1966-1		https://usn.ubuntu.com/1966-1/

Data source	Exploit-DB
Date added	Aug. 22, 2013
Description	Samba 3.5.22/3.6.17/4.0.8 - nttrans Reply Integer Overflow
Ransomware campaign use	Unknown
Source publication date	Aug. 22, 2013
Exploit type	dos
Platform	linux
Source update date	Sept. 6, 2017

Data source	Metasploit
Description	Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet. Important Note: in order to work, the "ea support" option on the target share must be enabled.
Note	Stability: - crash-service-down SideEffects: [] Reliability: []
Ransomware campaign use	Unknown
Source URL	https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/dos/samba/read_nttrans_ea_list.rb

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.99388
EPSS Score	0.86808
Published At	Aug. 8, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:40:39.184423+00:00	Ubuntu USN Importer	Import	https://usn.ubuntu.com/1966-1/	37.0.0