EIP-2026-104066
PRE-CVESamba 3.0.10 < 3.3.5 - Format String / Security Bypass
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-104066. PoCs published by Jeremy Allison.
AI-analyzed exploit summary This PoC demonstrates a path traversal vulnerability in SMB by using a malformed filename with a question mark to bypass restrictions. The exploit leverages improper input validation to access unintended directories.
Description
Samba 3.0.10 < 3.3.5 - Format String / Security Bypass
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Jeremy Allison · textremotemultiple
https://www.exploit-db.com/exploits/10095
This PoC demonstrates a path traversal vulnerability in SMB by using a malformed filename with a question mark to bypass restrictions. The exploit leverages improper input validation to access unintended directories.
Classification
Working Poc 80%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target:
SMB (Server Message Block) implementations
No auth needed
Prerequisites:
Access to an SMB share
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026