MiracleLinux 4 : samba4-4.0.0-60.AXS4.rc4 (AXSA:2014-032:01)

🗓️ 16 Jan 2026 00:00:00Reported by TenableType

MiracleLinux 4 patches Samba for CVE-2013-4124 DoS and CVE-2013-4408 remote code execution.

Reporter	Title	Published	Views	Family All 246
IBM Security Bulletins	Security Bulletin: Samba vulnerability issue on IBM Storwize V7000 Unified (CVE-2013-4408 and CVE-2012-6105)	18 Jun 201800:07	–	ibm
IBM Security Bulletins	Security Bulletin: Samba vulnerability issue on SONAS (CVE-2013-4408 and CVE-2012-6105)	18 Jun 201800:07	–	ibm
0day.today	Samba nttrans Reply - Integer Overflow Vulnerability	22 Aug 201300:00	–	zdt
ALT Linux	Security fix for the ALT Linux 8 package samba-DC version 4.1.3-alt1	9 Dec 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package samba version 4.0.8-alt1	7 Aug 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package samba-DC version 4.0.8-alt1	7 Aug 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package samba version 4.0.8-alt1	7 Aug 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package samba version 4.1.3-alt1	9 Dec 201300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package samba version 4.1.3-alt1	9 Dec 201300:00	–	altlinux
FreeBSD	samba -- multiple vulnerabilities	12 Jun 201200:00	–	freebsd

Source	Link
tsn	www.tsn.miraclelinux.com/en/node/4444
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2014-032:01.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(290091);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/16");

  script_cve_id("CVE-2013-4124", "CVE-2013-4408");

  script_name(english:"MiracleLinux 4 : samba4-4.0.0-60.AXS4.rc4 (AXSA:2014-032:01)");

  script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the
AXSA:2014-032:01 advisory.

    Samba is the standard Windows interoperability suite of programs for Linux and U nix.
    Security issues fixed with this release:
     CVE-2013-4124
    Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22,
    3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory
    consumption) via a malformed packet.
     CVE-2013-4408
    Heap-based buffer overflow in the dcerpc_read_ncacn_packet_done function in librpc/rpc/dcerpc_util.c in
    winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain
    controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet.
    Fixed bugs:
     When installing Samba in the build root directory, f the RPM target did not exist, then the find-
    debuginfo.sh script did not create symbolic links for the libwbclient.so.debug module associated with the
    target. This has been fixed: the paths are now relative and the links are created.
     Added a missing dependency for the libreplace.so which could prevent the installation.

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/4444");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-4408");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2013-4124");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"vendor_severity", value:"High");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/08/05");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/03/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-dc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-dc-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-pidl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-python");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-swat");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-test");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-winbind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-winbind-clients");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:samba4-winbind-krb5-locator");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:4");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Miracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm2.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^4([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 4.x', 'MIRACLE LINUX ' + os_version);

if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);

var constraints = [
  {
    'release': '4',
    'pkgs': [
      {'reference':'samba4-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-client-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-client-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-common-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-common-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-dc-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-dc-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-dc-libs-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-dc-libs-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-devel-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-devel-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-libs-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-libs-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-pidl-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-pidl-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-python-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-python-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-swat-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-swat-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-test-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-test-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-winbind-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-winbind-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-winbind-clients-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-winbind-clients-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-winbind-krb5-locator-4.0.0-60.AXS4.rc4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'samba4-winbind-krb5-locator-4.0.0-60.AXS4.rc4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
    ]
  }
];

var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');

var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
  # Check that the target release is equal to the affected release
  if (!empty_or_null(constraint['release'])){
    if (constraint['release'] != os_release) continue;
  }
  if (!empty_or_null(constraint['sp'])){
    if (constraint['sp'] != os_sp) continue;
  }
  foreach var pkg ( constraint['pkgs'] ) {
    reference = NULL;
    sp = NULL;
    _cpu = NULL;
    el_string = NULL;
    rpm_spec_vers_cmp = NULL;
    epoch = NULL;
    allowmaj = NULL;
    exists_check = NULL;
    cves = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
    if (reference &&
        ## (no known rpm to check OR known rpm_exists)
        (!exists_check || rpm_exists(rpm:exists_check)) &&
        rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}
if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'samba4 / samba4-client / samba4-common / samba4-dc / samba4-dc-libs / etc');
}

16 Jan 2026 00:00Current

8.3High risk

Vulners AI Score8.3

CVSS 28.3

EPSS0.83531