Lucene search
+L

26 matches found

OSV
OSV
added 2020/09/23 9:36 a.m.12 views

SUSE-SU-2020:2722-1 Security update for samba

This update for samba fixes the following issues: - ZeroLogon: An elevation of privilege was possible with some non default configurations when an attacker established a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC CVE-2020-1472,...

10CVSS6.3AI score0.99512EPSS
Exploits75References3
Tenable Nessus
Tenable Nessus
added 2020/09/17 12:0 a.m.214 views

Ubuntu 16.04 LTS / 18.04 LTS : Samba vulnerability (USN-4510-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4510-1 advisory. Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use thi...

10CVSS7.8AI score0.99512EPSS
Exploits75References2
OSV
OSV
added 2020/08/17 7:15 p.m.5 views

AZL-36991 CVE-2020-1472 affecting package samba for versions less than 4.18.3-1

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...

10CVSS7AI score0.99512EPSS
Exploits75References1
OSV
OSV
added 2020/08/17 7:15 p.m.4 views

DEBIAN-CVE-2020-1472

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...

5.5CVSS7.7AI score0.99512EPSS
Exploits75References1
OSV
OSV
added 2020/08/17 7:15 p.m.9 views

ALPINE-CVE-2020-1472

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...

5.5CVSS7.9AI score0.99512EPSS
Exploits75References1
FreeBSD
FreeBSD
added 2020/01/01 12:0 a.m.65 views

samba -- Unauthenticated domain takeover via netlogon

The Samba Team reports: An unauthenticated attacker on the network can gain administrator access by exploiting a netlogon protocol flaw...

10CVSS4AI score0.99512EPSS
Exploits75References1
Rows per page
Query Builder