Astra Linux - уязвимость в samba

A out-of-bounds read vulnerability was discovered in Samba due to insufficient length checks in the winbinddpamauthcrap.c file. When performing NTLM authentication, the client sends cryptographic challenges back to the server. These responses have varying lengths, and Winbind fails to check the...

EUVD-2016-3229

Malware in sbrugna...

EUVD-2006-1063

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2016-2126

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC Privilege Attribute Certificate checksum. A remote,...

samba: out-of-bounds read in winbind AUTH_CRAP

An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authentication, the client replies to cryptographic challenges back to the server. These replies have variable lengths, and Winbind fails to check the lan manage...

SUSE-SU-2023:3066-1 Security update for samba

This update for samba fixes the following issues: - CVE-2022-2127: Fixed issue where lmresplen was not checked properly in winbinddpamauthcrapsend bsc1213174. - CVE-2023-34966: Fixed samba spotlight mdssvc RPC Request Infinite Loop Denial-of-Service Vulnerability bsc1213173. - CVE-2023-34967: Fix...

SUSE CVE-2006-1059

The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain...

SUSE CVE-2013-4408

Heap-based buffer overflow in the dcerpcreadncacnpacketdone function in librpc/rpc/dcerpcutil.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote AD domain controllers to execute arbitrary code via an invalid fragment length in a DCE-RPC packet...

SUSE CVE-2016-2126

Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC Privilege Attribute Certificate checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the...

ALBA-2022:1561 idm:DL1 bug fix update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fixes: Error replacing a replica with CentOS Stream 9 BZ2062404 reinstalling samba client causes winbindd coredump...

Security fix for the ALT Linux 10 package samba version 4.14.10-alt3

Dec. 13, 2021 Evgeny Sinelnikov 4.14.10-alt3 - Update for the latest fixes release of Samba 4.14 + CVE-2020-25727 idmapnss, krb5 and s3-auth regressions + CVE-2021-3670 ldapserver, dsdb/anr and ldb libldb-2.3.2-alt2 regressions + smbd: s3-dsgetdcname: handle numips == 0 + dsdb: Use...

OPENSUSE-SU-2021:3662-1 Security update for samba

This update for samba fixes the following issues: - Fix regression introduced by CVE-2020-25717 patches, winbindd does not start when 'allow trusted domains' is off; bso14899;...

SUSE-SU-2021:3662-1 Security update for samba

This update for samba fixes the following issues: - Fix regression introduced by CVE-2020-25717 patches, winbindd does not start when 'allow trusted domains' is off; bso14899;...

Privilege Escalation

busybox is vulnerable to privilege escalation. Winbindd doesn't start when allow trusted domains is off allowing remote attackers to bypass restrictions and gain unauthorized access...

openSUSE Security Update : ldb / samba (openSUSE-2020-1313)

"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Security update for ldb, samba (important)

openSUSE Security Update: Security update for ldb, samba Announcement ID: openSUSE-SU-2020:1313-1 Rating: important References: 1141320 1162680 1169095 1169521 1169850 1169851 1171437 1172307 1173159 1173160 1173161 1173359 1174120 Cross-References: CVE-2020-10700 CVE-2020-10704 CVE-2020-10730...

openSUSE Security Update : ldb / samba (openSUSE-2020-1023)

"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

CVE-2016-2126

A flaw was found in the way Samba handled PAC Privilege Attribute Certificate checksums. A remote, authenticated attacker could use this flaw to crash the winbindd process...

NewStart CGSL MAIN 4.05 : samba Multiple Vulnerabilities (NS-SA-2019-0096)

The remote NewStart CGSL host, running version MAIN 4.05, has samba packages installed that are affected by multiple vulnerabilities: - A flaw was found in the way Samba handled PAC Privilege Attribute Certificate checksums. A remote, authenticated attacker could use this flaw to crash the winbin...

Privilege Escalation

Samba is vulnerable to privilege escalation attacks. A remote authenticated attacker can send a specially crafted Privilege Attribute Certificate PAC to trigger an overflow and cause the target winbindd service to crash. Additionally a local service with access to the winbindd privileged pipe can...