{"id":"CVE-2015-8771","details":"The generate_smb_nt_hash function in include/functions.inc in GOsa allows remote attackers to execute arbitrary commands via a crafted password.","modified":"2026-04-10T03:46:33.585547Z","published":"2017-02-13T18:59:00Z","references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/01/15/11"},{"type":"ADVISORY","url":"https://github.com/gosa-project/gosa-core/commit/a67a047cba2cdae8bccb0f0e2bc6d3eb45cfcbc8"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2016/01/15/11"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2016/01/15/11"},{"type":"FIX","url":"https://github.com/gosa-project/gosa-core/commit/a67a047cba2cdae8bccb0f0e2bc6d3eb45cfcbc8"},{"type":"REPORT","url":"https://github.com/gosa-project/gosa-core/commit/a67a047cba2cdae8bccb0f0e2bc6d3eb45cfcbc8"},{"type":"WEB","url":"http://www.securityfocus.com/bid/96388"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}