57 matches found
EUVD-2018-6443
Malware in sbrugna...
realmd allows remote attackers to inject arbitrary configurations in to sssd.conf and smb.conf
...
Citrix ADC (NetScaler) Directory Traversal Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Citrix ADC NetScaler Directory Traversal Scanner', 'Description' = % This module exploits a directory traversal vulnerability CVE-2019-19781 with...
Medium: samba
Issue Overview: When doing NTLM authentication, the client sends replies to cryptographic challenges back to the server. These replies have variable length. Winbind did not properly bounds-check the lan manager response length, which despite the lan manager version no longer being used is still...
Ubuntu 20.04 LTS / 22.04 LTS : Samba vulnerabilities (USN-5993-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5993-1 advisory. Demi Marie Obenour discovered that the Samba LDAP server incorrectly handled certain confidential attribute values. A remote authenticated...
Fedora 37 : libldb / samba (2023-fca3bfed78)
The remote Fedora 37 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-fca3bfed78 advisory. Update to ldb 2.6.2 and samba 4.17.7 Security fixes for CVE-2023-0225, CVE-2023-0922, CVE-2023-0614 Tenable has extracted the preceding description...
Samba AD DC admin tool samba-tool sends passwords in cleartext
Description Active Directory allows passwords to be set and changed over LDAP. Microsoft's implementation imposes a restriction that this may only happen over an encrypted connection, however Samba does not have this restriction currently. Samba's samba-tool client tool likewise has no restrictio...
Samba AD DC "dnsHostname" attribute can be
Description In implementing the Validated dnsHostName permission check in Samba's Active Directory DC, and therefore applying correctly constraints on the values of a dnsHostName value for a computer in a Samba domain CVE-2022-32743, the case where the dnsHostName is deleted, rather than modified...
Security fix for the ALT Linux 10 package samba version 4.16.6-alt1
Oct. 27, 2022 Evgeny Sinelnikov 4.16.6-alt1 - Update to maintenance release of Samba 4.16 Samba15134 - Security fixes: + CVE-2022-3437: There is a limited write heap buffer overflow in the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal included in Samba...
CVE-2021-44142
An out-of-bounds heap read write vulnerability was found in Samba. Due to a boundary error when processing EA metadata while opening files in smbd within the VFS Samba module vfsfruit, a remote attacker with ability to write to file's extended attributes can trigger an out-of-bounds write and...
Mageia: Security Advisory (MGASA-2019-0286)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-14383
A flaw was found in Samba's DNS server. This flaw allows an authenticated user to crash the RPC server. The RPC server, which also serves protocols other than the DNS server, is restarted after a short delay, however, an authenticated non-administrative attacker can cause a crash as soon as it...
CVE-2020-1472
A flaw was found in the Microsoft Windows Netlogon Remote Protocol MS-NRPC, where it reuses a known, static, zero-value initialization vector IV in AES-CFB8 mode. This flaw allows an unauthenticated attacker to impersonate a domain-joined computer, including a domain controller, and possibly obta...
Citrix ADC (NetScaler) Directory Traversal Scanner
This module exploits a directory traversal vulnerability CVE-2019-19781 within Citrix ADC NetScaler. It requests the smb.conf file located in the /vpns/cfg directory by issuing the request /vpn/../vpns/cfg/smb.conf. It then checks if the server is vulnerable by looking for the presence of a...
Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP web server vulnerability
Overview A vulnerability been identified in Citrix Application Delivery Controller ADC formerly known as NetScaler ADC, Citrix Gateway formerly known as NetScaler Gateway, and Citrix SDWAN WANOP that could allow an unauthenticated remote attacker to execute arbitrary code on a vulnerable system...
CVE-2017-12150
It was found that samba did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text. Mitigation The missing implied signing for smb2mount -e, smbcacls -e and smbcquotas -e can be...
openSUSE Security Update : samba (openSUSE-2019-1292)
This update for samba fixes the following issues : Security issue fixed : - CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share bsc1131060. Non-security issues fixed : - Fix vfsceph ftruncate and fallocate handling...
Security update for samba (moderate)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2019:1292-1 Rating: moderate References: 1099590 1123755 1124223 1127153 1131060 Cross-References: CVE-2019-3880 Affected Products: openSUSE Leap 42.3 An update that solves one vulnerability and has four fixes is now...
SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2019:1037-1)
This update for samba fixes the following issues : Security issue fixed : CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share bsc1131060. Non-security issues fixed: Fix vfsceph ftruncate and fallocate handling...
SUSE-SU-2019:1037-1 Security update for samba
This update for samba fixes the following issues: Security issue fixed: - CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share bsc1131060. Non-security issues fixed: - Fix vfsceph ftruncate and fallocate handling...