CVE-2016-2118

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka "BADLOCK."

References

http://badlock.org/

http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182185.html

http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182272.html

http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182288.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00021.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00023.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00024.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00042.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html

http://rhn.redhat.com/errata/RHSA-2016-0611.html

http://rhn.redhat.com/errata/RHSA-2016-0612.html

http://rhn.redhat.com/errata/RHSA-2016-0613.html

http://rhn.redhat.com/errata/RHSA-2016-0614.html

http://rhn.redhat.com/errata/RHSA-2016-0618.html

http://rhn.redhat.com/errata/RHSA-2016-0619.html

http://rhn.redhat.com/errata/RHSA-2016-0620.html

http://rhn.redhat.com/errata/RHSA-2016-0621.html

http://rhn.redhat.com/errata/RHSA-2016-0623.html

http://rhn.redhat.com/errata/RHSA-2016-0624.html

http://rhn.redhat.com/errata/RHSA-2016-0625.html

http://www.debian.org/security/2016/dsa-3548

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

http://www.securityfocus.com/bid/86002

http://www.securitytracker.com/id/1035533

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.458012

http://www.ubuntu.com/usn/USN-2950-1

http://www.ubuntu.com/usn/USN-2950-2

http://www.ubuntu.com/usn/USN-2950-3

http://www.ubuntu.com/usn/USN-2950-4

http://www.ubuntu.com/usn/USN-2950-5

https://access.redhat.com/security/vulnerabilities/badlock

https://bto.bluecoat.com/security-advisory/sa122

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05162399

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05166182

https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes

https://kb.netapp.com/support/s/article/ka51A0000008SXzQAM/smb-vulnerabilities-in-multiple-netapp-products

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40196

https://security.gentoo.org/glsa/201612-47

https://www.kb.cert.org/vuls/id/813296

https://www.samba.org/samba/history/samba-4.2.10.html

https://www.samba.org/samba/latest_news.html#4.4.2

https://www.samba.org/samba/security/CVE-2016-2118.html

Details

Source: MITRE

Published: 2016-04-12

Updated: 2019-09-27

Type: CWE-254

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.6

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:samba:samba:3.0.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.2:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.2a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.4:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.14:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.14a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.18:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.19:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20:b:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.20b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21:b:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21:c:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.21c:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.22:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23:b:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23:c:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23:d:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23c:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.23d:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.24:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:b:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:c:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:pre1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:pre2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:rc2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25:rc3:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25b:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.25c:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.26:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.26:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.26a:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.27:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.27:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.28:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.28:a:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.29:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.30:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.31:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.32:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.33:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.34:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.35:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.36:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.0.37:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.1.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.2.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.3.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.4.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.18:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.19:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.20:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.21:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.5.22:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.18:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.19:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.20:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.21:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.22:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.23:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:3.6.24:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.18:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.19:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.20:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.21:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.22:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.23:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.0.24:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.11:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.12:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.13:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.14:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.15:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.16:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.17:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.18:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.19:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.20:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.21:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.1.22:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.0:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.0:rc2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.0:rc3:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.0:rc4:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.8:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.9:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.2.10:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.1:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.2:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.3:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.4:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.5:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.6:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.3.7:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.4.0:*:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.4.0:rc1:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.4.0:rc2:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.4.0:rc3:*:*:*:*:*:*

cpe:2.3:a:samba:samba:4.4.1:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

Tenable Plugins

View all (50 total)

IDNameProductFamilySeverity
99777EulerOS 2.0 SP1 : samba (EulerOS-SA-2016-1014)NessusHuawei Local Security Checks
high
96127GLSA-201612-47 : Samba: Multiple vulnerabilities (Badlock)NessusGentoo Local Security Checks
high
91333Ubuntu 14.04 LTS / 15.10 / 16.04 LTS : samba regression (USN-2950-5) (Badlock)NessusUbuntu Local Security Checks
high
91256Ubuntu 12.04 LTS : samba regressions (USN-2950-4) (Badlock)NessusUbuntu Local Security Checks
high
91055F5 Networks BIG-IP : Samba vulnerabilities (K37603172) (Badlock)NessusF5 Networks Local Security Checks
high
90915Ubuntu 12.04 LTS / 14.04 LTS / 15.10 / 16.04 LTS : samba regressions (USN-2950-3) (Badlock)NessusUbuntu Local Security Checks
high
90824Ubuntu 14.04 LTS / 15.10 / 16.04 LTS : libsoup2.4 update (USN-2950-2) (Badlock)NessusUbuntu Local Security Checks
high
90646Fedora 24 : samba-4.4.2-1.fc24 (2016-383fce04e2) (Badlock)NessusFedora Local Security Checks
high
90609openSUSE Security Update : samba (openSUSE-2016-490) (Badlock)NessusSuSE Local Security Checks
high
90588Ubuntu 12.04 LTS / 14.04 LTS / 15.10 : samba vulnerabilities (USN-2950-1) (Badlock)NessusUbuntu Local Security Checks
high
90558openSUSE Security Update : samba (openSUSE-2016-462) (Badlock)NessusSuSE Local Security Checks
high
90548Slackware 14.0 / 14.1 / current : samba (SSA:2016-106-02) (Badlock)NessusSlackware Local Security Checks
high
90536SUSE SLES11 Security Update : samba (SUSE-SU-2016:1028-1) (Badlock)NessusSuSE Local Security Checks
high
90534SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2016:1024-1) (Badlock)NessusSuSE Local Security Checks
high
90533SUSE SLES11 Security Update : samba (SUSE-SU-2016:1023-1) (Badlock)NessusSuSE Local Security Checks
high
90532SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2016:1022-1) (Badlock)NessusSuSE Local Security Checks
high
90530RHEL 6 / 7 : Storage Server (RHSA-2016:0614) (Badlock)NessusRed Hat Local Security Checks
high
90522openSUSE Security Update : samba (openSUSE-2016-453) (Badlock)NessusSuSE Local Security Checks
high
90519Fedora 23 : samba-4.3.8-0.fc23 (2016-be53260726) (Badlock)NessusFedora Local Security Checks
high
90516Fedora 22 : samba-4.2.11-0.fc22 (2016-48b3761baa) (Badlock)NessusFedora Local Security Checks
high
90515Debian DSA-3548-1 : samba - security update (Badlock)NessusDebian Local Security Checks
high
90514Amazon Linux AMI : samba (ALAS-2016-686) (Badlock)NessusAmazon Linux Local Security Checks
high
90509Samba Badlock VulnerabilityNessusGeneral
high
90508Samba 3.x < 4.2.10 / 4.2.x < 4.2.10 / 4.3.x < 4.3.7 / 4.4.x < 4.4.1 Multiple Vulnerabilities (Badlock)NessusMisc.
high
90504Scientific Linux Security Update : samba on SL6.x i386/x86_64 (20160412) (Badlock)NessusScientific Linux Local Security Checks
high
90503Scientific Linux Security Update : samba on SL5.x i386/x86_64 (20160412) (Badlock)NessusScientific Linux Local Security Checks
high
90502Scientific Linux Security Update : samba and samba4 on SL6.x, SL7.x i386/x86_64 (20160412) (Badlock)NessusScientific Linux Local Security Checks
high
90501Scientific Linux Security Update : samba3x on SL5.x i386/x86_64 (20160412) (Badlock)NessusScientific Linux Local Security Checks
high
90500RHEL 5 : samba3x (RHSA-2016:0624) (Badlock)NessusRed Hat Local Security Checks
high
90499RHEL 5 : samba (RHSA-2016:0623) (Badlock)NessusRed Hat Local Security Checks
high
90498RHEL 5 : samba (RHSA-2016:0621) (Badlock)NessusRed Hat Local Security Checks
high
90497RHEL 6 : samba4 (RHSA-2016:0620) (Badlock)NessusRed Hat Local Security Checks
high
90496RHEL 6 : samba (RHSA-2016:0619) (Badlock)NessusRed Hat Local Security Checks
high
90495RHEL 7 : samba (RHSA-2016:0618) (Badlock)NessusRed Hat Local Security Checks
high
90493RHEL 5 : samba3x (RHSA-2016:0613) (Badlock)NessusRed Hat Local Security Checks
high
90492RHEL 6 / 7 : samba and samba4 (RHSA-2016:0612) (Badlock)NessusRed Hat Local Security Checks
high
90491RHEL 6 : samba (RHSA-2016:0611) (Badlock)NessusRed Hat Local Security Checks
high
90489Oracle Linux 5 : samba (ELSA-2016-0621) (Badlock)NessusOracle Linux Local Security Checks
high
90488Oracle Linux 5 : samba3x (ELSA-2016-0613) (Badlock)NessusOracle Linux Local Security Checks
high
90487Oracle Linux 6 / 7 : samba / samba4 (ELSA-2016-0612) (Badlock)NessusOracle Linux Local Security Checks
high
90486Oracle Linux 6 : samba (ELSA-2016-0611) (Badlock)NessusOracle Linux Local Security Checks
high
90474FreeBSD : samba -- multiple vulnerabilities (a636fc26-00d9-11e6-b704-000c292e4fd8) (Badlock)NessusFreeBSD Local Security Checks
high
90452CentOS 5 : samba (CESA-2016:0621) (Badlock)NessusCentOS Local Security Checks
high
90451CentOS 5 : samba3x (CESA-2016:0613) (Badlock)NessusCentOS Local Security Checks
high
90450CentOS 6 / 7 : ipa / libldb / libtalloc / libtdb / libtevent / openchange / samba / samba4 (CESA-2016:0612) (Badlock)NessusCentOS Local Security Checks
high
90449CentOS 6 : samba (CESA-2016:0611) (Badlock)NessusCentOS Local Security Checks
high
9233Samba 4.4.x < 4.4.1 Multiple Vulnerabilities (Badlock)Nessus Network MonitorSamba
high
9232Samba 4.3.x < 4.3.7 Multiple Vulnerabilities (Badlock)Nessus Network MonitorSamba
high
9231Samba 4.2.x < 4.2.10 Multiple Vulnerabilities (Badlock)Nessus Network MonitorSamba
high
801967Samba < 4.2.10/11, < 4.3.7/8, < 4.4.1/2 badlock VulnerabilityLog Correlation EngineSamba
high