IBME047281ED8775316309A6B03EEB7A696BDADA3C42EE4EA7AB68C29F954505F90Security Bulletin: Vulnerabilities in Samba affect IBM i
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
6 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
Summary
Security vulnerabilities in Samba affect IBM i. IBM i has addressed the applicable CVEs.
Vulnerability Details
CVEID: CVE-2015-3223 DESCRIPTION: Samba is vulnerable to a denial of service, caused by an error in the daemon LDAP server. By sending specially crafted packets, an attacker could exploit this vulnerability to cause the daemon process to become unresponsive.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109136 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
CVEID: CVE-2015-5252 DESCRIPTION: Samba could allow a remote attacker to launch a symlink attack, caused by the improper verification of symlinks by the smbd server. An attacker could exploit this vulnerability to gain access to files located outside of the exported share path.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109137 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
CVEID: CVE-2015-5296 DESCRIPTION: Samba could allow a remote attacker to bypass security restrictions, caused by the failure to properly negotiate signing when establishing an encrypted connection. A remote attacker could exploit this vulnerability using man-in-the-middle techniques to perform downgrade attacks to connect via an unsigned, unencrypted connection.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109138 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)
CVEID: CVE-2015-5299 DESCRIPTION: Samba could allow a remote attacker to bypass security restrictions, caused by a missing access control check in the vfs_shadow_copy2 module. An attacker could exploit this vulnerability to view the current snapshots.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109139 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
CVEID: CVE-2015-5330 DESCRIPTION: Samba could allow a remote attacker to obtain sensitive information, caused by an error in the samba daemon process. By sending specially crafted packets to the LDAP server, an attacker could exploit this vulnerability to return heap memory beyond the length of therequested value.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109140 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
CVEID: CVE-2015-7540 DESCRIPTION: Samba is vulnerable to a denial of service, caused by an error in the daemon LDAP server. By sending specially crafted packets, an attacker could exploit this vulnerability to consume all available memory resources.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109135 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
CVEID: CVE-2015-8467 DESCRIPTION: Samba could allow a remote authenticated attacker to bypass security restrictions, caused by the failure to implement the SeMachineAccountPrivilege functionality. An attacker could exploit this vulnerability to bypass the quota limit and create excessive machine accounts on the system.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109141 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N)
Affected Products and Versions
Release 7.2 of IBM i is affected.
Remediation/Fixes
The issue can be fixed by applying a PTF to the IBM i Operating System.
Release 7.2 of IBM i are supported and will be fixed.
http://www-933.ibm.com/support/fixcentral/
The IBM i PTF number is:
Release 7.2 – SI59114
_Important note: _IBM recommends that all users running unsupported versions of affected products upgrade to supported and fixed version of affected products.
Workarounds and Mitigations
None known
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
6 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P