Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
sambaSamba SecuritySAMBA:CVE-2018-1050
HistoryMar 13, 2018 - 12:00 a.m.

Denial of Service Attack on external print server.

2018-03-1300:00:00
Samba Security
www.samba.org
509

4.3 Medium

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.027 Low

EPSS

Percentile

90.4%

JSON

Description

All versions of Samba from 3.6.0 onwards are vulnerable to a denial of
service attack when the RPC spoolss service is configured to be run as
an external daemon. Missing input sanitization checks on some of the
input parameters to spoolss RPC calls could cause the print spooler
service to crash.

There is no known vulnerability associated with this error, merely a
denial of service. If the RPC spoolss service is left by default as an
internal service, all a client can do is crash its own authenticated
connection.

Patch Availability

A patch addressing this defect has been posted to

http://www.samba.org/samba/security/

Additionally, Samba 4.7.6, 4.6.14 and 4.5.16 have been issued as
security releases to correct the defect. Patches against older Samba
versions are available at http://samba.org/samba/patches/. Samba
vendors and administrators running affected versions are advised to
upgrade or apply the patch as soon as possible.

Workaround

Ensure the parameter:

rpc_server:spoolss = external

is not set in the [global] section of your smb.conf.

Credits

This problem was found by the Synopsys Defensics intelligent fuzz
testing tool. Jeremy Allison of Google and the Samba Team provided
the fix.

Related

nessus 41
veracode 1
openvas 25
checkpoint_advisories 1
redhatcve 1
debian 4
alpinelinux 1
centos 3
osv 4
oraclelinux 3
prion 1
redhat 5
ubuntu 2
cbl_mariner 1
f5 1
ibm 3
cve 1
ubuntucve 1
debiancve 1
archlinux 1
mageia 1
altlinux 6
fedora 7
thn 1
cisa 1
threatpost 1
freebsd 1
amazon 2
gentoo 1
nessus
nessus
Oracle Linux 6 : samba4 (ELSA-2018-1883)
2018-06-27 00:00:00
CentOS 6 : samba4 (CESA-2018:1883)
2018-06-22 00:00:00
NewStart CGSL MAIN 4.05 : samba Vulnerability (NS-SA-2019-0134)
2019-08-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:23:30
openvas
openvas
Ubuntu: Security Advisory (USN-3595-2)
2022-08-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0832-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0754-1)
2021-04-19 00:00:00
checkpoint_advisories
checkpoint_advisories
Samba Printer Server spoolss Denial Of Service (CVE-2018-1050)
2018-06-03 00:00:00
redhatcve
redhatcve
CVE-2018-1050
2019-10-09 10:03:19
debian
debian
[SECURITY] [DLA 1320-1] samba security update
2018-03-27 22:36:20
[SECURITY] [DSA 4135-1] samba security update
2018-03-13 09:49:45
[SECURITY] [DSA 4135-1] samba security update
2018-03-13 09:49:45
alpinelinux
alpinelinux
CVE-2018-1050
2018-03-13 16:29:00
centos
centos
libsmbclient, samba security update
2018-06-21 11:56:04
samba4 security update
2018-06-21 11:56:05
ctdb, libsmbclient, libwbclient, samba security update
2018-12-14 16:36:48
osv
osv
samba - security update
2018-03-27 00:00:00
CVE-2018-1050
2018-03-13 16:29:00
samba - security update
2018-03-13 00:00:00
oraclelinux
oraclelinux
samba4 security and bug fix update
2018-06-25 00:00:00
samba security, bug fix, and enhancement update
2018-11-05 00:00:00
samba security and bug fix update
2018-06-25 00:00:00
prion
prion
Design/Logic Flaw
2018-03-13 16:29:00
redhat
redhat
(RHSA-2018:1860) Low: samba security and bug fix update
2018-06-19 02:11:16
(RHSA-2018:1883) Low: samba4 security and bug fix update
2018-06-19 02:11:50
(RHSA-2018:3056) Moderate: samba security, bug fix, and enhancement update
2018-10-30 04:13:40
ubuntu
ubuntu
Samba vulnerability
2018-03-23 00:00:00
Samba vulnerabilities
2018-03-13 00:00:00
cbl_mariner
cbl_mariner
CVE-2018-1050 affecting package samba 4.12.5-4
2024-04-26 21:08:25
f5
f5
K01494912 : Samba vulnerability CVE-2018-1050
2020-12-17 00:00:00
ibm
ibm
Security Bulletin: Public disclosed vulnerability from Samba affect IBM Netezza Host Management
2019-10-18 03:36:34
Security Bulletin: A vulnerability in Samba affects IBM OS Image for Red Hat Linux Systems on IBM PureApplication (CVE-2018-1050)
2018-10-17 12:20:01
Security Bulletin: Multiple Vulnerabilities in Samba affect IBM i
2019-12-18 14:26:38
cve
cve
CVE-2018-1050
2018-03-13 16:29:00
ubuntucve
ubuntucve
CVE-2018-1050
2018-03-13 00:00:00
debiancve
debiancve
CVE-2018-1050
2018-03-13 16:29:00
archlinux
archlinux
[ASA-201803-10] samba: multiple issues
2018-03-13 00:00:00
mageia
mageia
Updated samba packages fix security vulnerabilities
2018-04-13 23:08:48
altlinux
altlinux
Security fix for the ALT Linux 8 package samba-DC version 4.6.14-alt1.1
2018-03-15 00:00:00
Security fix for the ALT Linux 8 package samba version 4.6.14-alt1.1
2018-03-15 00:00:00
Security fix for the ALT Linux 10 package samba version 4.6.14-alt1.S1
2018-03-12 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: samba-4.7.6-0.fc27
2018-03-14 19:40:44
[SECURITY] Fedora 27 Update: libldb-1.3.2-1.fc27
2018-03-14 19:40:43
[SECURITY] Fedora 26 Update: samba-4.6.14-0.fc26
2018-03-20 17:38:39
thn
thn
Update Samba Servers Immediately to Patch Password Reset and DoS Vulnerabilities
2018-03-13 10:05:00
cisa
cisa
Samba Releases Security Updates
2018-03-13 00:00:00
threatpost
threatpost
Samba Patches Two Critical Vulnerabilities in Server Software
2018-03-13 12:56:17
freebsd
freebsd
samba -- multiple vulnerabilities
2018-01-03 00:00:00
amazon
amazon
Medium: samba
2019-01-22 17:55:00
Medium: samba
2018-12-13 20:13:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2018-05-22 00:00:00

4.3 Medium

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.027 Low

EPSS

Percentile

90.4%

JSON
Related for SAMBA:CVE-2018-1050
nessus41veracode1openvas25checkpoint_advisories1redhatcve1debian4alpinelinux1centos3osv4oraclelinux3prion1redhat5ubuntu2cbl_mariner1f51ibm3cve1ubuntucve1debiancve1archlinux1mageia1altlinux6fedora7thn1cisa1threatpost1freebsd1amazon2gentoo1