Lucene search
K

21 matches found

OSV
OSV
•added 2023/08/31 12:15 p.m.•1 views

BELL-CVE-2017-11103 CVE-2017-11103 does not affect BellSoft software

Bulletin has no description...

8.1CVSS7.3AI score0.05118EPSS
Exploits0References1
OpenVAS
OpenVAS
•added 2022/01/28 12:0 a.m.•10 views

Mageia: Security Advisory (MGASA-2017-0326)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.05118EPSS
Exploits0References7
OpenVAS
OpenVAS
•added 2021/04/19 12:0 a.m.•10 views

SUSE: Security Advisory (SUSE-SU-2017:2237-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.05118EPSS
Exploits0References10
OpenVAS
OpenVAS
•added 2020/09/29 12:0 a.m.•24 views

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2020-2110)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.1AI score0.05118EPSS
Exploits1References2
Mageia
Mageia
•added 2017/09/03 2:31 p.m.•29 views

Updated samba packages fix security vulnerability

Jeffrey Altman, Viktor Dukhovni, and Nicolas Williams discovered that Samba clients incorrectly trusted unauthenticated portions of Kerberos tickets. A remote attacker could use this to impersonate trusted network servers or perform other attacks CVE-2017-11103. The samba package has been updated...

8.1CVSS3.9AI score0.05118EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
•added 2017/08/31 3:9 a.m.•79 views

Security update for samba and resource-agents (important)

This update provides Samba 4.6.7, which fixes the following issues: - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext the Ticket rather than the authenticated and encrypted KDC response. bsc1048278 - Fix cephwrapchdir. bsc1048790 - Fix ctdb logs to /var/log/log.ctdb...

6.8CVSS0.7AI score0.05118EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
•added 2017/08/31 12:0 a.m.•38 views

openSUSE Security Update : samba and resource-agents (openSUSE-2017-987) (Orpheus' Lyre)

This update provides Samba 4.6.7, which fixes the following issues : - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext the Ticket rather than the authenticated and encrypted KDC response. bsc1048278 - Fix cephwrapchdir. bsc1048790 - Fix ctdb logs to /var/log/log.ctdb...

8.1CVSS7AI score0.05118EPSS
Exploits0References8
OpenVAS
OpenVAS
•added 2017/08/31 12:0 a.m.•10 views

openSUSE: Security Advisory for samba (openSUSE-SU-2017:2311-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS8.3AI score0.05118EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2017/08/23 12:0 a.m.•17 views

SUSE SLED12 / SLES12 Security Update : samba / resource-agents (SUSE-SU-2017:2237-1) (Orpheus' Lyre)

This update provides Samba 4.6.7, which fixes the following issues : - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext the Ticket rather than the authenticated and encrypted KDC response. bsc1048278 - Fix cephwrapchdir. bsc1048790 - Fix ctdb logs to /var/log/log.ctdb...

8.1CVSS7AI score0.05118EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
•added 2017/08/18 12:0 a.m.•26 views

openSUSE Security Update : libheimdal (openSUSE-2017-937) (Orpheus' Lyre)

This update for libheimdal fixes the following issues : - Fix CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation. This is a critical vulnerability. In krb5extractticket the KDC-REP service name must be obtained from encrypted version stored in 'encpart' instead of the unencrypted versi...

8.1CVSS7AI score0.05118EPSS
Exploits0References4
OpenVAS
OpenVAS
•added 2017/08/01 12:0 a.m.•154 views

QNAP QTS < 4.2.6 build 20170729, 4.3.x < 4.3.3 build 20170727 Multiple Vulnerabilities

QNAP QTS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; ifdescription...

8.1CVSS8AI score0.05186EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
•added 2017/07/24 12:0 a.m.•28 views

Fedora 25 : heimdal (2017-5d6a9e0c9c) (Orpheus' Lyre)

Update to 7.4.0 GA release CVE-2017-11103 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

8.1CVSS7AI score0.05118EPSS
Exploits0References2
Debian
Debian
•added 2017/07/16 1:4 p.m.•36 views

[SECURITY] [DSA 3912-1] heimdal security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3912-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 16, 2017 https://www.debian.org/security/faq -...

8.1CVSS8AI score0.05118EPSS
Exploits0
OpenVAS
OpenVAS
•added 2017/07/14 12:0 a.m.•22 views

Debian Security Advisory DSA 3909-1 (samba - security update)

Jeffrey Altman, Viktor Duchovni and Nico Williams identified a mutual authentication bypass vulnerability in samba, the SMB/CIFS file, print, and login server. Also known as Orpheus OpenVAS Vulnerability Test $Id: deb3909.nasl 6800 2017-07-26 06:58:22Z cfischer $ Auto-generated from advisory DSA...

6.8CVSS0.5AI score0.05118EPSS
Exploits0References1
CVE
CVE
•added 2017/07/13 1:0 p.m.•613 views

CVE-2017-11103

CVE-2017-11103 affects Heimdal (Kerberos); vulnerability arises from improper handling of the KDC-REP service name in krb5_extract_ticket, enabling remote service impersonation when the unencrypted service name is used instead of the encrypted enc_part. Apple’s security content (HT208112/HT208221...

8.1CVSS7.9AI score0.05118EPSS
Exploits0References12Affected Software1
ALT Linux
ALT Linux
•added 2017/07/13 12:0 a.m.•36 views

Security fix for the ALT Linux 7 package samba-DC version 4.5.12-alt1.M70P.1

4.5.12-alt1.M70P.1 built July 13, 2017 Evgeny Sinelnikov in task 185331 July 12, 2017 Evgeny Sinelnikov - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation...

6.8CVSS8.3AI score0.05118EPSS
Exploits0
ALT Linux
ALT Linux
•added 2017/07/13 12:0 a.m.•70 views

Security fix for the ALT Linux 7 package samba version 4.5.12-alt1.M70P.1

4.5.12-alt1.M70P.1 built July 13, 2017 Evgeny Sinelnikov in task 185331 July 12, 2017 Evgeny Sinelnikov - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation Samba binaries built against MIT Kerberos are not vulnerable...

6.8CVSS8.3AI score0.05118EPSS
Exploits0
Samba
Samba
•added 2017/07/12 12:0 a.m.•70 views

Orpheus' Lyre mutual authentication validation bypass

All versions of Samba from 4.0.0 include an embedded copy of Heimdal Kerberos. Heimdal has made a security release, which disclosed: Fix CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation This is a critical vulnerability. In krb5extractticket the KDC-REP service name must be obtained...

6.8CVSS1AI score0.05118EPSS
Exploits0
ALT Linux
ALT Linux
•added 2017/07/12 12:0 a.m.•27 views

Security fix for the ALT Linux 8 package samba-DC version 4.6.6-alt1

July 12, 2017 Evgeny Sinelnikov 4.6.6-alt1 - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation...

6.8CVSS7.1AI score0.05118EPSS
Exploits0
ALT Linux
ALT Linux
•added 2017/07/12 12:0 a.m.•36 views

Security fix for the ALT Linux 10 package samba version 4.6.6-alt1.S1

July 12, 2017 Evgeny Sinelnikov 4.6.6-alt1.S1 - Update to summer security release - Security fixes: + CVE-2017-11103 Orpheus' Lyre KDC-REP service name validation...

6.8CVSS7.1AI score0.05118EPSS
Exploits0
Rows per page
Query Builder