Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice

Overview Recently, NSFOCUS CERT detected that Samba released a security update to fix the Samba WINS command injection vulnerability (CVE-2025-10230); Since WINS when Samba is used as an AD domain controller does not strictly verify the wins hook script command when processing registration messages, unauthenticated attackers can construct a special host name to inject commands […]

The post Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

The post Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice appeared first on Security Boulevard.