| VID |
23236 |
| Severity |
30 |
| Port |
139 |
| Protocol |
TCP |
| Class |
Samba |
| Detailed Description |
According to its banner, the version of Samba running on the remote host is 3.4.x or later but prior to 3.6.23 or 4.0.x or later but prior to 4.0.16 or 4.1.6. It is, therefore, potentially affected by multiple
vulnerabilities :
- A flaw exists in the Security Account Manager Remote protocol implementation where it fails to validate the user lockout state, affecting Samba versions 3.4.x and later. This could allow a remote attacker to attempt a brute-force attack to determine a user's password without being locked out. (CVE-2013-4496)
- A flaw exists in the 'owner_set' function of the smbcacls command when changing the owner or group owner of the object using '-C' / '--chown' or '-G' / '--chgrp' flags, causing the existing ACL to be removed. This affects Samba versions 4.0.x and later and could allow an attacker unrestricted access to the modified object. (CVE-2013-6442)
* Note: If this check solely relied on the version number of the remote Samba server to assess this vulnerability, then this might be a false positive.
* References:
https://www.samba.org/samba/security/CVE-2013-4496
https://www.samba.org/samba/security/CVE-2013-6442
http://www.samba.org/samba/history/samba-3.6.23.html
http://www.samba.org/samba/history/samba-4.0.16.html
http://www.samba.org/samba/history/samba-4.1.6.html
https://www.samba.org/samba/history/
https://www.samba.org/samba/history/security.html
* Platforms Affected:
Samba Project, Samba versions before 3.6.23 / 4.0.16 / 4.1.6
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of Samba 3.6.23 / 4.0.16 / 4.1.6 or later, available from the Samba Web site at http://www.samba.org/samba/ |
| Related URL |
CVE-2013-4496,CVE-2013-6442 (CVE) |
| Related URL |
66232,66336 (SecurityFocus) |
| Related URL |
(ISS) |
|
