PT-2018-3371 · Samba Team+6 · Samba+5

Vivek Das

Publicado

2018-08-14

Atualizado

2024-06-15

CVE-2018-1139

CVSS v3.1

8.1

Alta

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Samba versions prior to 4.7.9 Samba versions prior to 4.8.4

Description: A flaw in Samba's NTLMv1 authentication allows a man-in-the-middle attacker to read credentials and other details passed between the Samba server and client, even when NTLMv1 is explicitly disabled. This issue is related to incomplete protection of user registration data, which could allow a remote attacker to gain unauthorized access to confidential data.

Recommendations: For Samba versions prior to 4.7.9, update to version 4.7.9 or later to resolve the issue. For Samba versions prior to 4.8.4, update to version 4.8.4 or later to resolve the issue.

Exploit

Correção

RCE

Insufficiently Protected Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20CWE-522

Identificadores relacionados

ALT-PU-2018-2167

ALT-PU-2018-2168

ALT-PU-2018-2488

ALT-PU-2018-2489

BDU:2020-00693

CESA-2018_3056

CVE-2018-1139

ECHO-6033-31EB-730E

OPENSUSE-SU-2018_2400-1

OPENSUSE-SU-2024:11365-1

RHSA-2018:2612

RHSA-2018:2613

RHSA-2018:3056

RHSA-2018_3056

SUSE-SU-2018:2318-1

USN-3738-1

Produtos afetados

Alt Linux

Centos

Red Hat

Samba

Suse

Ubuntu

PT-2018-3371 · Samba Team+6 · Samba+5

CVE-2018-1139

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 108