CVE-2023-42670

Name of the Vulnerable Software and Affected Versions Samba (affected versions not specified)

Description A flaw was found in Samba, making it susceptible to a vulnerability where multiple incompatible RPC listeners can be initiated, causing disruptions in the AD DC service. When Samba's RPC server experiences a high load or unresponsiveness, servers intended for non-AD DC purposes can erroneously start and compete for the same unix domain sockets, leading to partial query responses from the AD DC. This issue can cause problems such as "The procedure number is out of range" when using tools like Active Directory Users. The vulnerability is related to incorrect resource release in the RPC server, allowing a remote attacker to disrupt AD DC services by exploiting this flaw.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.