CVE-2009-1886
samba - several vulnerabilities
EPSS 24.8%
Description
Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename.
How to fix CVE-2009-1886
To remediate CVE-2009-1886, upgrade the affected package to a fixed version below.
- Debian/samba—upgrade to 2:3.3.6-1 or later
- Debian/samba—upgrade to 2:3.2.5-4lenny6 or later
Is CVE-2009-1886 being exploited?
Moderate — EPSS is 24.8%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 2:3.3.6-1
- from 0, < 2:3.2.5-4lenny6