CVE-2023-3961 - Path Traversal Vulnerability in Samba’s Unix Domain Socket Connections
In mid-2023, researchers discovered a critical vulnerability in Samba, the popular open-source SMB/CIFS implementation used for file and print services on Unix and Linux
CVE-2023-4091 - How Samba’s VFS “acl_xattr” Module Let SMB Clients Wipe Read-Only Files
A serious bug was found in Samba that lets SMB clients delete (truncate) the contents of files—even if they only have read-only access! This
CVE-2023-42670 - Samba AD DC Disruption via Multiple Competing RPC Listeners
When it comes to managing Windows networks in Linux environments, Samba is the go-to suite providing seamless interoperability between Unix/Linux and Windows systems. However,
CVE-2023-41357 - Exploiting File Upload Vulnerability in Galaxy Software Services Vitals ESP
In September 2023, Galaxy Software Services Corporation’s Vitals ESP—their online knowledge base management portal—was found to have a severe file upload vulnerability.
CVE-2023-31102 - How a Sneaky Bug in 7-Zip’s Ppmd7.c Opened the Door to Security Risks
When it comes to compressing and decompressing files on Windows, few tools are as widely used as 7-Zip. Reliable, open-source, free—it’s the go-to
Episode
00:00:00
00:00:00