VulnerableCode Vulnerability Details - VCID-8hfr-fp5z-s3c1

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-8hfr-fp5z-s3c1

Essentials
Severities (1)
References (16)
Severity details (0)
Exploits (2)
EPSS
History (1)

Vulnerability ID	VCID-8hfr-fp5z-s3c1
Aliases	CVE-2015-0240
Summary	The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code via crafted Netlogon packets that use the ServerPasswordSet RPC API, as demonstrated by packets reaching the _netr_ServerPasswordSet function in rpc_server/netlogon/srv_netlog_nt.c.
Status	Published
Exploitability	2.0
Weighted Severity	0.8
Risk	1.6
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

System	Score	Found at
epss	0.90696	https://api.first.org/data/v1/epss?cve=CVE-2015-0240

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0240.json
		https://api.first.org/data/v1/epss?cve=CVE-2015-0240
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0240
1191325		https://bugzilla.redhat.com/show_bug.cgi?id=1191325
779033		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=779033
CVE-2015-0240;OSVDB-118637	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux_x86/dos/36741.py
GLSA-201502-15		https://security.gentoo.org/glsa/201502-15
RHSA-2015:0249		https://access.redhat.com/errata/RHSA-2015:0249
RHSA-2015:0250		https://access.redhat.com/errata/RHSA-2015:0250
RHSA-2015:0251		https://access.redhat.com/errata/RHSA-2015:0251
RHSA-2015:0252		https://access.redhat.com/errata/RHSA-2015:0252
RHSA-2015:0253		https://access.redhat.com/errata/RHSA-2015:0253
RHSA-2015:0254		https://access.redhat.com/errata/RHSA-2015:0254
RHSA-2015:0255		https://access.redhat.com/errata/RHSA-2015:0255
RHSA-2015:0256		https://access.redhat.com/errata/RHSA-2015:0256
RHSA-2015:0257		https://access.redhat.com/errata/RHSA-2015:0257

Data source	Metasploit
Description	This module checks if a Samba target is vulnerable to an uninitialized variable creds vulnerability.
Note	Reliability: - unknown-reliability Stability: - unknown-stability SideEffects: - unknown-side-effects
Ransomware campaign use	Unknown
Source URL	https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/scanner/smb/smb_uninit_cred.rb

Data source	Exploit-DB
Date added	April 14, 2015
Description	Samba < 3.6.2 (x86) - Denial of Service (PoC)
Ransomware campaign use	Unknown
Source publication date	April 13, 2015
Exploit type	dos
Platform	linux_x86
Source update date	March 27, 2017

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.99637
EPSS Score	0.90696
Published At	June 4, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-04T17:10:38.797265+00:00	Debian Importer	Import	https://security-tracker.debian.org/tracker/data/json	38.6.0