ALT-PU-2016-1332-1
Closed vulnerabilities
Published: 2016-04-24
BDU:2021-01274
Уязвимость службы NETLOGON пакета программ сетевого взаимодействия Samba, связанная с недостатках элементов безопасности, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность
Severity: MEDIUM (6.4)
Vector: AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
References:
Published: 2016-04-24
BDU:2021-01275
Уязвимость функции ncacn_np пакета программ сетевого взаимодействия Samba, связанная с недостатками элементов безопасности, позволяющая нарушителю оказать воздействие на целостность данных
Severity: MEDIUM (5.9)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
Published: 2016-04-24
BDU:2021-01276
Уязвимость реализации DCE/RPC пакета программ сетевого взаимодействия Samba, связанная с раскрытием информации, позволяющая нарушителю оказать воздействие на целостность данных
Severity: MEDIUM (5.9)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
Published: 2016-04-24
BDU:2021-01290
Уязвимость пакета программ сетевого взаимодействия Samba, связанная с недостатками в механизме криптографической защиты, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность
Severity: HIGH (7.4)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
References:
Published: 2016-04-24
BDU:2021-01291
Уязвимость библиотеки LDAP пакета программ сетевого взаимодействия Samba, связанная с недостатках элементов безопасности, позволяющая нарушителю оказать воздействие на целостность данных
Severity: MEDIUM (5.9)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
Published: 2016-04-24
BDU:2021-01292
Уязвимость реализации протокола SMB1 пакета программ сетевого взаимодействия Samba, связанная с недостатками элементов безопасности, позволяющая нарушителю оказать воздействие на целостность данных
Severity: MEDIUM (5.9)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
Published: 2016-04-24
BDU:2021-01294
Уязвимость реализации NTLMSSP пакета программ сетевого взаимодействия Samba, связанная с недостатках элементов безопасности, позволяющая нарушителю оказать воздействие на целостность данных
Severity: MEDIUM (5.9)
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
Published: 2016-04-12
BDU:2021-01316
Уязвимость протокола MS-SAMR и MS-LSAD пакета программ сетевого взаимодействия Samba, связанная с недостатками элементов безопасности, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Severity: HIGH (7.5)
Vector: AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-5370
Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not properly implement the DCE-RPC layer, which allows remote attackers to perform protocol-downgrade attacks, cause a denial of service (application crash or CPU consumption), or possibly execute arbitrary code on a client system via unspecified vectors.
Severity: MEDIUM (5.9)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0611
- RHSA-2016:0611
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0613
- RHSA-2016:0613
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0619
- RHSA-2016:0619
- RHSA-2016:0620
- RHSA-2016:0620
- RHSA-2016:0624
- RHSA-2016:0624
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2015-5370.html
- https://www.samba.org/samba/security/CVE-2015-5370.html
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2110
The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security.
Severity: MEDIUM (5.9)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- SUSE-SU-2016:1105
- SUSE-SU-2016:1105
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1440
- openSUSE-SU-2016:1440
- RHSA-2016:0611
- RHSA-2016:0611
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0613
- RHSA-2016:0613
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0619
- RHSA-2016:0619
- RHSA-2016:0620
- RHSA-2016:0620
- RHSA-2016:0621
- RHSA-2016:0621
- RHSA-2016:0623
- RHSA-2016:0623
- RHSA-2016:0624
- RHSA-2016:0624
- RHSA-2016:0625
- RHSA-2016:0625
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- GLSA-201612-47
- GLSA-201612-47
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2110.html
- https://www.samba.org/samba/security/CVE-2016-2110.html
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2111
The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted application and leveraging the ability to sniff network traffic, a related issue to CVE-2015-0005.
Severity: MEDIUM (6.3)
Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- SUSE-SU-2016:1105
- SUSE-SU-2016:1105
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0611
- RHSA-2016:0611
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0613
- RHSA-2016:0613
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0619
- RHSA-2016:0619
- RHSA-2016:0620
- RHSA-2016:0620
- RHSA-2016:0621
- RHSA-2016:0621
- RHSA-2016:0623
- RHSA-2016:0623
- RHSA-2016:0624
- RHSA-2016:0624
- RHSA-2016:0625
- RHSA-2016:0625
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- GLSA-201612-47
- GLSA-201612-47
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2111.html
- https://www.samba.org/samba/security/CVE-2016-2111.html
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2112
The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "client ldap sasl wrapping" setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream.
Severity: MEDIUM (5.9)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0611
- RHSA-2016:0611
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0613
- RHSA-2016:0613
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0619
- RHSA-2016:0619
- RHSA-2016:0620
- RHSA-2016:0620
- RHSA-2016:0624
- RHSA-2016:0624
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- GLSA-201612-47
- GLSA-201612-47
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2112.html
- https://www.samba.org/samba/security/CVE-2016-2112.html
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2113
Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate.
Severity: HIGH (7.4)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0620
- RHSA-2016:0620
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- GLSA-201612-47
- GLSA-201612-47
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2113.html
- https://www.samba.org/samba/security/CVE-2016-2113.html
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2114
The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream.
Severity: MEDIUM (5.9)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0620
- RHSA-2016:0620
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 86011
- 86011
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- GLSA-201612-47
- GLSA-201612-47
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2114.html
- https://www.samba.org/samba/security/CVE-2016-2114.html
Published: 2016-04-25
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2115
Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream.
Severity: MEDIUM (5.9)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0611
- RHSA-2016:0611
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0613
- RHSA-2016:0613
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0619
- RHSA-2016:0619
- RHSA-2016:0620
- RHSA-2016:0620
- RHSA-2016:0624
- RHSA-2016:0624
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05087821
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05082964
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- GLSA-201612-47
- GLSA-201612-47
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2115.html
- https://www.samba.org/samba/security/CVE-2016-2115.html
Published: 2016-04-13
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2118
The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka "BADLOCK."
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
- http://badlock.org/
- http://badlock.org/
- FEDORA-2016-be53260726
- FEDORA-2016-be53260726
- FEDORA-2016-48b3761baa
- FEDORA-2016-48b3761baa
- FEDORA-2016-383fce04e2
- FEDORA-2016-383fce04e2
- SUSE-SU-2016:1022
- SUSE-SU-2016:1022
- SUSE-SU-2016:1023
- SUSE-SU-2016:1023
- SUSE-SU-2016:1024
- SUSE-SU-2016:1024
- openSUSE-SU-2016:1025
- openSUSE-SU-2016:1025
- SUSE-SU-2016:1028
- SUSE-SU-2016:1028
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1064
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1106
- openSUSE-SU-2016:1107
- openSUSE-SU-2016:1107
- RHSA-2016:0611
- RHSA-2016:0611
- RHSA-2016:0612
- RHSA-2016:0612
- RHSA-2016:0613
- RHSA-2016:0613
- RHSA-2016:0614
- RHSA-2016:0614
- RHSA-2016:0618
- RHSA-2016:0618
- RHSA-2016:0619
- RHSA-2016:0619
- RHSA-2016:0620
- RHSA-2016:0620
- RHSA-2016:0621
- RHSA-2016:0621
- RHSA-2016:0623
- RHSA-2016:0623
- RHSA-2016:0624
- RHSA-2016:0624
- RHSA-2016:0625
- RHSA-2016:0625
- DSA-3548
- DSA-3548
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 86002
- 86002
- 1035533
- 1035533
- SSA:2016-106-02
- SSA:2016-106-02
- USN-2950-1
- USN-2950-1
- USN-2950-2
- USN-2950-2
- USN-2950-3
- USN-2950-3
- USN-2950-4
- USN-2950-4
- USN-2950-5
- USN-2950-5
- https://access.redhat.com/security/vulnerabilities/badlock
- https://access.redhat.com/security/vulnerabilities/badlock
- https://bto.bluecoat.com/security-advisory/sa122
- https://bto.bluecoat.com/security-advisory/sa122
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05166182
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05166182
- https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
- https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
- https://kb.netapp.com/support/s/article/ka51A0000008SXzQAM/smb-vulnerabilities-in-multiple-netapp-products
- https://kb.netapp.com/support/s/article/ka51A0000008SXzQAM/smb-vulnerabilities-in-multiple-netapp-products
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40196
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40196
- GLSA-201612-47
- GLSA-201612-47
- VU#813296
- VU#813296
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/history/samba-4.2.10.html
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/latest_news.html#4.4.2
- https://www.samba.org/samba/security/CVE-2016-2118.html
- https://www.samba.org/samba/security/CVE-2016-2118.html