Lucene search

K

RedhatCVELIST:CVE-2013-0214

HistoryFeb 02, 2013 - 8:00 p.m.

CVE-2013-0214

2013-02-0220:00:00

redhat

www.cve.org

3

AI Score

6.8

Confidence

High

EPSS

0.012

Percentile

85.0%

Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.

References

lists.opensuse.org/opensuse-security-announce/2013-02/msg00019.html

lists.opensuse.org/opensuse-security-announce/2013-03/msg00042.html

lists.opensuse.org/opensuse-updates/2013-02/msg00029.html

lists.opensuse.org/opensuse-updates/2013-02/msg00033.html

osvdb.org/89627

rhn.redhat.com/errata/RHSA-2013-1310.html

rhn.redhat.com/errata/RHSA-2013-1542.html

rhn.redhat.com/errata/RHSA-2014-0305.html

www.debian.org/security/2013/dsa-2617

www.samba.org/samba/security/CVE-2013-0214

www.securityfocus.com/bid/57631

www.ubuntu.com/usn/USN-2922-1

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05115993

AI Score

6.8

Confidence

High

EPSS

0.012

Percentile

85.0%

Related for CVELIST:CVE-2013-0214

cve1 nvd1 debiancve1 ubuntucve1 prion1 samba1 nessus27 openvas30 fedora6 osv1 debian1 suse3 centos3 redhat3 veracode1 ics1 oraclelinux3 ubuntu1 securityvulns1