Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.811522
Category:General
Title:Samba Man in the Middle Security Bypass Vulnerability (Heimdal)
Summary:Samba is prone to a MITM authentication validation bypass vulnerability.
Description:Summary:
Samba is prone to a MITM authentication validation bypass vulnerability.

Vulnerability Insight:
The flaw is due to error in function
'_krb5_extract_ticket' where the KDC-REP service name must be obtained from
encrypted version stored in 'enc_part' instead of the unencrypted version
stored in 'ticket'. Use of the unecrypted version provides an opportunity
for successful server impersonation and other attacks.

Vulnerability Impact:
Successfully exploiting this issue will allow
a MITM attacker to impersonate a trusted server and thus gain elevated access
to the domain by returning malicious replication or authorization data.

Affected Software/OS:
All versions of Samba from 4.0.0 before
4.6.6 or 4.5.12 or 4.4.15.

Note: All versions of Samba from 4.0.0 onwards using embedded Heimdal Kerberos.
Samba binaries built against MIT Kerberos are not vulnerable.

Solution:
Upgrade to Samba 4.6.6 or 4.5.12 or 4.4.15
or later or apply the patch from below.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: BugTraq ID: 99551
Common Vulnerability Exposure (CVE) ID: CVE-2017-11103
CopyrightCopyright (C) 2017 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.