EIP-2026-102736

The exploit demonstrates two denial-of-service vulnerabilities in Samba's SMB protocol handling. The first triggers a null pointer dereference by manipulating Unicode flags in 'Negotiate Protocol' and 'Session Setup AndX' requests, while the second causes an uninitialized variable read by setting the 'security blob length' to an invalid value.