PT-2016-3326 · Samba Team+6 · Samba+5

Alberto Solino

·

Published

2015-04-01

·

Updated

2024-06-15

·

CVE-2016-2111

CVSS v3.1

6.3

Medium

VectorAV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions Samba versions 3.x through 4.4.x before 4.4.2 Samba versions 4.3.x before 4.3.8 Samba versions 4.2.x before 4.2.11
Description The issue is related to security flaws in the NETLOGON service of the Samba network interaction software package. It allows a remote attacker to exploit the vulnerability, potentially gaining access to confidential data and compromising its integrity. The vulnerability can be exploited by running a crafted application and leveraging the ability to sniff network traffic, which enables the attacker to spoof the computer name of a secure channel's endpoint and obtain sensitive session information.
Recommendations For Samba versions 3.x through 4.4.x before 4.4.2, update to version 4.4.2 or later. For Samba versions 4.3.x before 4.3.8, update to version 4.3.8 or later. For Samba versions 4.2.x before 4.2.11, update to version 4.2.11 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-254

Related Identifiers

ALT-PU-2015-1347
ALT-PU-2016-1324
ALT-PU-2016-1325
BDU:2021-01274
CESA-2016_0611
CESA-2016_0612
CVE-2016-2111
DSA-3548-1
DSA-3548-2
DSA-3548-3
ECHO-C8BF-4EA0-AEC1
MGASA-2016-0151
OPENSUSE-SU-2016_1025-1
OPENSUSE-SU-2016_1064-1
OPENSUSE-SU-2016_1106-1
OPENSUSE-SU-2024:10069-1
RHSA-2016:0611
RHSA-2016:0612
RHSA-2016:0613
RHSA-2016:0614
RHSA-2016:0618
RHSA-2016:0619
RHSA-2016:0620
RHSA-2016:0621
RHSA-2016:0623
RHSA-2016:0624
RHSA-2016:0625
RHSA-2016_0611
RHSA-2016_0612
RHSA-2016_0613
RHSA-2016_0621
SUSE-SU-2016:1022-1
SUSE-SU-2016:1023-1
SUSE-SU-2016:1024-1
SUSE-SU-2016:1028-1
USN-2950-1
USN-2950-2
USN-2950-3
USN-2950-5

Affected Products

Alt Linux
Centos
Red Hat
Samba
Suse
Ubuntu