PT-2018-3371 · Samba Team+6 · Samba+5

Vivek Das

Published

2018-08-14

Updated

2024-06-15

CVE-2018-1139

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Samba versions prior to 4.7.9 Samba versions prior to 4.8.4

Description: A flaw in Samba's NTLMv1 authentication allows a man-in-the-middle attacker to read credentials and other details passed between the Samba server and client, even when NTLMv1 is explicitly disabled. This issue is related to incomplete protection of user registration data, which could allow a remote attacker to gain unauthorized access to confidential data.

Recommendations: For Samba versions prior to 4.7.9, update to version 4.7.9 or later to resolve the issue. For Samba versions prior to 4.8.4, update to version 4.8.4 or later to resolve the issue.

Exploit

Fix

RCE

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-522

Related Identifiers

ALT-PU-2018-2167

ALT-PU-2018-2168

ALT-PU-2018-2488

ALT-PU-2018-2489

BDU:2020-00693

CESA-2018_3056

CVE-2018-1139

ECHO-6033-31EB-730E

OPENSUSE-SU-2018_2400-1

OPENSUSE-SU-2024:11365-1

RHSA-2018:2612

RHSA-2018:2613

RHSA-2018:3056

RHSA-2018_3056

SUSE-SU-2018:2318-1

USN-3738-1

Affected Products

Alt Linux

Centos

Red Hat

Samba

Suse

Ubuntu

PT-2018-3371 · Samba Team+6 · Samba+5

CVE-2018-1139

Weakness Enumeration

Related Identifiers

Affected Products

References · 108