Lucene search

K
ubuntuUbuntuUSN-3976-1
HistoryMay 14, 2019 - 12:00 a.m.

Samba vulnerability

2019-05-1400:00:00
ubuntu.com
111

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8

Confidence

High

EPSS

0.003

Percentile

70.9%

Releases

  • Ubuntu 19.04
  • Ubuntu 18.10
  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM

Packages

  • samba - SMB/CIFS file, print, and login server for Unix

Details

Isaac Boukris and Andrew Bartlett discovered that Samba incorrectly checked
S4U2Self packets. In certain environments, a remote attacker could possibly
use this issue to escalate privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu19.04noarchsamba< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchctdb< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchctdb-dbgsym< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibnss-winbind< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibnss-winbind-dbgsym< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibpam-winbind< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibpam-winbind-dbgsym< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibparse-pidl-perl< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibsmbclient< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Ubuntu19.04noarchlibsmbclient-dbgsym< 2:4.10.0+dfsg-0ubuntu2.1UNKNOWN
Rows per page:
1-10 of 1441

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8

Confidence

High

EPSS

0.003

Percentile

70.9%