Lucene search
+L

41 matches found

f5
f5
added 2023/02/21 6:32 p.m.54 views

K08602542: SAMBA vulnerability CVE-2022-0336

Security Advisory Description The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously...

8.8CVSS7.1AI score0.01301EPSS
Exploits0
nvd
nvd
added 2022/08/29 3:15 p.m.19 views

CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS0.01301EPSS
Exploits0References7
osv
osv
added 2022/08/29 3:15 p.m.3 views

DEBIAN-CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS7.5AI score0.01301EPSS
Exploits0References1
cvelist
cvelist
added 2022/08/29 12:0 a.m.37 views

CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.7AI score0.01301EPSS
Exploits0References7
osv
osv
added 2022/08/29 12:0 a.m.77 views

CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS3.6AI score0.01301EPSS
Exploits0References9
cve
cve
added 2022/08/29 12:0 a.m.539 views

CVE-2022-0336

Samba AD DC CVE-2022-0336: SPN checks can be bypassed when re-adding a previously present SPN, enabling a write-enabled attacker to impersonate services or cause DoS by matching an existing SPN. Some advisories note no patch for certain releases (e.g., Samba 4.12.5-7), while others indicate an up...

8.8CVSS8.4AI score0.01301EPSS
Exploits0References7Affected Software1
debiancve
debiancve
added 2022/08/29 12:0 a.m.45 views

CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS7.6AI score0.01301EPSS
Exploits0
alpinelinux
alpinelinux
added 2022/08/29 12:0 a.m.30 views

CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS8.7AI score0.01301EPSS
Exploits0
redhatcve
redhatcve
added 2022/08/24 3:11 p.m.119 views

CVE-2022-32743

A flaw was found in samba that validates the domain name system's host name. This issue links a trailing $ to objectclass=computer, which helps avoid the creation of SPN values that collide with other, possibly privileged hosts...

7.5CVSS2AI score0.01147EPSS
Exploits1References3
nessus
nessus
added 2022/05/06 12:0 a.m.44 views

EulerOS 2.0 SP10 : samba (EulerOS-SA-2022-1666)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The Samba vfsfruit module uses extended file attributes EA, xattr to provide ...enhanced compatibility with Apple SMB clients and interoperabilit...

9CVSS7.9AI score0.7372EPSS
Exploits2References4
mskb
mskb
added 2022/03/08 8:0 a.m.451 views

March 8, 2022—KB5011495 (OS Build 14393.5006) - EXPIRED

None None...

9CVSS6.8AI score0.56376EPSS
Exploits0
mageia
mageia
added 2022/02/09 8:46 p.m.77 views

Updated samba packages fix security vulnerability

For CVE-2021-20316 and CVE-2021-44141, there is only a workaround and mitigation: All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share...

9CVSS1.2AI score0.7372EPSS
Exploits1References9
veracode
veracode
added 2022/02/08 6:17 p.m.40 views

Denial Of Service (DoS)

samba is vulnerable to information disclosure. The vulnerability exists due to a lack of sanitization of permission when adding service principals names SPNs to an account...

8.8CVSS2.4AI score0.01301EPSS
Exploits0References8Affected Software2
ubuntu
ubuntu
added 2022/02/01 11:52 a.m.168 views

USN-5260-1: Samba vulnerabilities

Orange Tsai discovered that the Samba vfsfruit module incorrectly handled certain memory operations. A remote attacker could use this issue to cause Samba to crash, resulting in a denial of service, or possibly execute arbitrary code as root. CVE-2021-44142 Michael Hanselmann discovered that Samb...

9CVSS7.6AI score0.7372EPSS
Exploits2
ubuntucve
ubuntucve
added 2022/01/31 12:0 a.m.57 views

CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS7.1AI score0.01301EPSS
Exploits0References3
osv
osv
added 2022/01/31 12:0 a.m.6 views

UBUNTU-CVE-2022-0336

The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as...

8.8CVSS6.8AI score0.01301EPSS
Exploits0References4
samba
samba
added 2022/01/31 12:0 a.m.71 views

Samba AD users with permission to write to

Description The Samba AD DC includes checks when adding service principals names SPNs to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that...

8.8CVSS0.3AI score0.01301EPSS
Exploits0
kitploit
kitploit
added 2021/09/14 11:30 a.m.447 views

targetedKerberoast - Kerberoast With ACL Abuse Capabilities

targetedKerberoast is a Python script that can, like many others e.g. GetUserSPNs.py, print "kerberoast" hashes for user accounts that have a SPN set. This tool brings the following additional feature: for each user without SPNs, it tries to set one abuse of a write permission on the...

7.5AI score
Exploits0References4
kitploit
kitploit
added 2021/03/31 8:30 p.m.804 views

Rubeus - C# Toolset For Raw Kerberos Interaction And Abuses

Rubeus is a C toolset for raw Kerberos interaction and abuses. It is heavily adapted from Benjamin Delpy's Kekeo project CC BY-NC-SA 4.0 license and Vincent LE TOUX's MakeMeEnterpriseAdmin project GPL v3.0 license. Full credit goes to Benjamin and Vincent for working out the hard components of...

7.7AI score
Exploits0References14
pentestpartners
pentestpartners
added 2020/04/01 5:23 a.m.48 views

Honeyroasting. How to detect Kerberoast breaches with honeypots

Introduction As we know one of the main issues facing defenders, especially in large environments, is protecting against threat actors after they gain a foothold in the environment. If an attacker lands on a domain-joined PC, the attack surface is massive, and it is vital to detect them as quickl...

7.2AI score
Exploits0
Rows per page
Query Builder