Korean
<< Back
VID 23252
Severity 30
Port 139
Protocol TCP
Class Samba
Detailed Description The version of Samba running on the remote host is 4.3.x prior to 4.3.11. It is, therefore, affected by a flaw in libcli/smb/smbXcli_base.c that is triggered when handling SMB2 and SMB3 client onnections. A man-in-the-middle attacker can exploit this, by injecting the SMB2_SESSION_FLAG_IS_GUEST or SMB2_SESSION_FLAG_IS_NULL flags, to downgrade the required signing for a client connection, allowing the attacker to spoof SMB2 and SMB3 servers.

* Note: If this check solely relied on the version number of the remote Samba server to assess this vulnerability, then this might be a false positive.

* References:
https://www.samba.org/samba/security/CVE-2016-2119.html
http://www.samba.org/samba/history/samba-4.3.11.html

* Platforms Affected:
Samba Project, Samba versions 4.3.x prior to 4.3.11.
Linux Any version
Unix Any version
Recommendation Upgrade to the latest version of Samba 4.3.11 or later, available from the Samba Web site at https://www.samba.org/samba/download/
Related URL CVE-2016-2119 (CVE)
Related URL 91700 (SecurityFocus)
Related URL (ISS)