← CVECheck
HomeVulnerabilities

CVE-2004-0082 — HIGH severity vulnerability (The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0)

The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.

CVE IDCVE-2004-0082
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-03-03
Last modified2026-04-16
DescriptionThe mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →