Debian DSA-2617-1 : samba - several issues

medium Nessus Plugin ID 64397

Synopsis

The remote Debian host is missing a security-related update.

Description

Jann Horn had reported two vulnerabilities in Samba, a popular cross-platform network file and printer sharing suite. In particular, these vulnerabilities affect to SWAT, the Samba Web Administration Tool.

- CVE-2013-0213: Clickjacking issue in SWAT An attacker can integrate a SWAT page into a malicious web page via a frame or iframe and then overlaid by other content. If an authenticated valid user interacts with this malicious web page, she might perform unintended changes in the Samba settings.

- CVE-2013-0214: Potential Cross-site request forgery An attacker can persuade a valid SWAT user, who is logged in as root, to click in a malicious link and trigger arbitrary unintended changes in the Samba settings. In order to be vulnerable, the attacker needs to know the victim's password.

Solution

Upgrade the samba packages.

For the stable distribution (squeeze), these problems have been fixed in version 2:3.5.6~dfsg-3squeeze9.

See Also

https://security-tracker.debian.org/tracker/CVE-2013-0213

https://security-tracker.debian.org/tracker/CVE-2013-0214

https://packages.debian.org/source/squeeze/samba

https://www.debian.org/security/2013/dsa-2617

Plugin Details

Severity: Medium

ID: 64397

File Name: debian_DSA-2617.nasl

Version: 1.18

Type: local

Agent: unix

Published: 2/4/2013

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 5.1

Temporal Score: 3.8

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:samba, cpe:/o:debian:debian_linux:6.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Ease: No known exploits are available

Patch Publication Date: 2/2/2013

Reference Information

CVE: CVE-2013-0213, CVE-2013-0214

BID: 57631

DSA: 2617