Test ID:	1.3.6.1.4.1.25623.1.0.56522
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: samba
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory.
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: samba ja-samba CVE-2006-1059 The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 1.2 CVSS Vector: AV:L/AC:H/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-1059 BugTraq ID: 17314 http://www.securityfocus.com/bid/17314 Bugtraq: 20060330 [SECURITY] Samba 3.0.21-3.0.21c: Exposure of machine account credentials in winbindd log files (Google Search) http://www.securityfocus.com/archive/1/429370/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00114.html http://www.osvdb.org/24263 http://securitytracker.com/id?1015850 http://secunia.com/advisories/19455 http://secunia.com/advisories/19468 http://secunia.com/advisories/19539 http://www.trustix.org/errata/2006/0018 http://www.vupen.com/english/advisories/2006/1179 XForce ISS Database: samba-logfile-account-cleartext(25575) https://exchange.xforce.ibmcloud.com/vulnerabilities/25575
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.