Search for vulnerabilities
Vulnerability details: VCID-apgy-uyfh-aaak
Vulnerability ID VCID-apgy-uyfh-aaak
Aliases CVE-2012-0870
Summary Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other products, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion.
Status Published
Exploitability 2.0
Weighted Severity 9.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-674 Uncontrolled Recursion
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
System Score Found at
rhas Critical https://access.redhat.com/errata/RHSA-2012:0332
epss 0.24143 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.30423 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.93463 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.93463 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.93463 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
epss 0.95510 https://api.first.org/data/v1/epss?cve=CVE-2012-0870
rhbs urgent https://bugzilla.redhat.com/show_bug.cgi?id=795509
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0870.json
https://api.first.org/data/v1/epss?cve=CVE-2012-0870
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0870
795509 https://bugzilla.redhat.com/show_bug.cgi?id=795509
GLSA-201206-22 https://security.gentoo.org/glsa/201206-22
RHSA-2012:0332 https://access.redhat.com/errata/RHSA-2012:0332
USN-1374-1 https://usn.ubuntu.com/1374-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.93655
EPSS Score 0.24143
Published At March 29, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.