CVE-2006-1059

Name of the Vulnerable Software and Affected Versions Samba versions 3.0.21 through 3.0.21c

Description The issue allows local users to obtain the machine trust account password and spoof the server in the domain. This is due to the winbindd daemon writing the machine trust account password in cleartext in log files. Local attackers can gain access to the machine trust account of affected computers, potentially impersonating the affected server in the domain and gaining access to sensitive information, including users and groups. Successful exploitation requires the log level to be set to 5 or above.

Recommendations For Samba versions 3.0.21 through 3.0.21c, consider disabling the winbindd daemon or restricting access to the log files until a fix is available. Additionally, set the log level to a value below 5 to minimize the risk of exploitation.