CVE-2013-0213

Name of the Vulnerable Software and Affected Versions Samba versions 3.0.33 Samba versions prior to 3.5.21 Samba versions prior to 3.6.12 Samba versions prior to 4.0.2

Description The issue concerns multiple vulnerabilities in the Samba software, which can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. Specifically, the Samba Web Administration Tool (SWAT) is affected, allowing remote attackers to conduct clickjacking attacks via a FRAME or IFRAME element.

Recommendations For Samba versions 3.0.33, consider disabling the SWAT tool until a patch is available. For Samba versions prior to 3.5.21, update to version 3.5.21 or later. For Samba versions prior to 3.6.12, update to version 3.6.12 or later. For Samba versions prior to 4.0.2, update to version 4.0.2 or later. As a temporary workaround, restrict access to the vulnerable components to minimize the risk of exploitation.