Samba Multiple Vulnerabilities

Last Update Date: 22 Dec 2016 Release Date: 21 Dec 2016 4110 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

Multiple vulnerabilities were identified in Samba, a remote authenticated user can cause denial of service, elevation of privilege and arbitrary code execution on the target system.

Impact

Denial of Service
Elevation of Privilege
Remote Code Execution

System / Technologies affected

Versions 3.0.25 - 4.5.2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued a fix (4.3.13, 4.4.8, 4.5.3):
http://www.samba.org/samba/security/CVE-2016-2123.html
http://www.samba.org/samba/security/CVE-2016-2125.html
http://www.samba.org/samba/security/CVE-2016-2126.html

Vulnerability Identifier

CVE-2016-2123
CVE-2016-2125
CVE-2016-2126

Source

SecurityTracker