Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
sambaSamba SecuritySAMBA:CVE-2018-10918
HistoryAug 14, 2018 - 12:00 a.m.

Denial of Service Attack on AD DC DRSUAPI server

2018-08-1400:00:00
Samba Security
www.samba.org
642

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

74.8%

JSON

Description

All versions of Samba from 4.7.0 onwards are vulnerable to a denial of
service attack which can crash the “samba” process when Samba is an
Active Directory Domain Controller.

Missing database output checks on the returned directory attributes
from the LDB database layer cause the DsCrackNames call in the DRSUAPI
server to crash when following a NULL pointer.

This call is only available after authentication.

There is no further vulnerability associated with this error, merely a
denial of service.

Patch Availability

A patch addressing this defect has been posted to

http://www.samba.org/samba/security/

Additionally, Samba 4.8.4 and Samba 4.7.9 have been issued as a
security release to correct the defect. Patches against older Samba
versions are available at http://samba.org/samba/patches/. Samba
vendors and administrators running affected versions are advised to
upgrade or apply the patch as soon as possible.

Workaround

No workaround is possible while acting as a Samba AD DC.

Credits

The issue was reported by Volker Mauel. Andrew Bartlett of Catalyst
and the Samba Team provided the test and patches.

Related

prion 1
cve 1
debiancve 1
ubuntucve 1
osv 1
alpinelinux 1
redhatcve 1
openvas 9
altlinux 3
nessus 9
ubuntu 1
suse 1
ibm 2
fedora 5
cisa 1
freebsd 1
gentoo 1
prion
prion
Null pointer dereference
2018-08-22 17:29:00
cve
cve
CVE-2018-10918
2018-08-22 17:29:00
debiancve
debiancve
CVE-2018-10918
2018-08-22 17:29:00
ubuntucve
ubuntucve
CVE-2018-10918
2018-08-14 00:00:00
osv
osv
CVE-2018-10918
2018-08-22 17:29:00
alpinelinux
alpinelinux
CVE-2018-10918
2018-08-22 17:29:00
redhatcve
redhatcve
CVE-2018-10918
2020-01-19 03:24:14
openvas
openvas
Samba Multiple Vulnerabilities (Aug 2018)
2018-08-17 00:00:00
Ubuntu: Security Advisory (USN-3738-1)
2018-08-15 00:00:00
openSUSE: Security Advisory for samba (openSUSE-SU-2018:2400-1)
2018-10-26 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package samba version 4.7.9-alt1
2018-08-15 00:00:00
Security fix for the ALT Linux 8 package samba-DC version 4.7.9-alt1
2018-08-15 00:00:00
Security fix for the ALT Linux 10 package samba version 4.8.4-alt1.S1
2018-08-14 00:00:00
nessus
nessus
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Samba vulnerabilities (USN-3738-1)
2018-08-15 00:00:00
FreeBSD : samba -- multiple vulnerabilities (c4e9a427-9fc2-11e8-802a-000c29a1e3ec)
2018-08-15 00:00:00
SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2018:2318-1)
2019-01-02 00:00:00
ubuntu
ubuntu
Samba vulnerabilities
2018-08-14 00:00:00
suse
suse
Security update for samba (important)
2018-08-17 12:12:13
ibm
ibm
Security Bulletin: Multiple Samba vulnerabilities affect IBM Spectrum Protect Plus (CVE-2018-1139, CVE-2018-1140, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919)
2019-02-26 19:00:01
Security Bulletin: Multiple Vulnerabilities in Samba affect IBM i
2019-12-18 14:26:38
fedora
fedora
[SECURITY] Fedora 28 Update: libldb-1.4.0-3.fc28.1.3.5
2018-08-20 18:43:27
[SECURITY] Fedora 28 Update: samba-4.8.4-0.fc28
2018-08-20 18:43:27
[SECURITY] Fedora 27 Update: samba-4.7.9-0.fc27
2018-08-22 00:46:40
cisa
cisa
Samba Releases Security Updates
2018-08-14 00:00:00
freebsd
freebsd
samba -- multiple vulnerabilities
2018-08-14 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2020-03-25 00:00:00

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

74.8%

JSON
Related for SAMBA:CVE-2018-10918
prion1cve1debiancve1ubuntucve1osv1alpinelinux1redhatcve1openvas9altlinux3nessus9ubuntu1suse1ibm2fedora5cisa1freebsd1gentoo1