Samba Active Directory Domain Controller Access Control Vulnerability
Last Update Date:
17 Jan 2013 10:00
Release Date:
17 Jan 2013
4699
Views
RISK: Medium Risk
TYPE: Servers - Network Management
A vulnerability has been identified in Samba. A remote authenticated user can gain write access to certain objects in the target directory.
- A remote authenticated user can send specially crafted data to trigger a buffer overflow and execute arbitrary code on the target system. The code will run with the privileges of the target user.
- A remote authenticated user that has Active Directory access to an object based on the objectClass of the object is granted write access to the target object.
- A remote authenticated user with write access to any attribute of the target object may be granted write access to all attributes of the target object.
Impact
- Remote Code Execution
- Data Manipulation
System / Technologies affected
- Version 4.0.0
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor has issued a fix (4.0.1).
http://www.samba.org/samba/security/CVE-2013-0172
Vulnerability Identifier
Source
Related Link
Share with