CVE-2016-2125

LOW

Description

It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to other services or domain users.

References

http://rhn.redhat.com/errata/RHSA-2017-0494.html

http://rhn.redhat.com/errata/RHSA-2017-0495.html

http://rhn.redhat.com/errata/RHSA-2017-0662.html

http://rhn.redhat.com/errata/RHSA-2017-0744.html

http://www.securityfocus.com/bid/94988

http://www.securitytracker.com/id/1037494

https://access.redhat.com/errata/RHSA-2017:1265

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-2125

https://www.samba.org/samba/security/CVE-2016-2125.html

Details

Source: MITRE

Published: 2018-10-31

Updated: 2019-10-09

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 3.3

Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 6.5

Severity: LOW

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Tenable Plugins

View all (38 total)

IDNameProductFamilySeverity
127327NewStart CGSL MAIN 4.05 : samba4 Multiple Vulnerabilities (NS-SA-2019-0100)NessusNewStart CGSL Local Security Checks
critical
127320NewStart CGSL MAIN 4.05 : samba Multiple Vulnerabilities (NS-SA-2019-0096)NessusNewStart CGSL Local Security Checks
critical
109920Pulse Policy Secure Multiple Vulnerabilities (SA43730)NessusMisc.
low
109919Pulse Connect Secure Multiple Vulnerabilities (SA43730)NessusMisc.
low
101469Virtuozzo 7 : ctdb / ctdb-tests / libsmbclient / etc (VZLSA-2017-1265)NessusVirtuozzo Local Security Checks
medium
100698EulerOS 2.0 SP2 : samba (EulerOS-SA-2017-1105)NessusHuawei Local Security Checks
critical
100697EulerOS 2.0 SP1 : samba (EulerOS-SA-2017-1104)NessusHuawei Local Security Checks
critical
100554Amazon Linux AMI : samba (ALAS-2017-834) (SambaCry)NessusAmazon Linux Local Security Checks
critical
100350Scientific Linux Security Update : samba on SL7.x x86_64 (20170522)NessusScientific Linux Local Security Checks
medium
100346RHEL 7 : samba (RHSA-2017:1265)NessusRed Hat Local Security Checks
medium
100344Oracle Linux 7 : samba (ELSA-2017-1265)NessusOracle Linux Local Security Checks
medium
100329CentOS 7 : samba (CESA-2017:1265)NessusCentOS Local Security Checks
medium
99225Scientific Linux Security Update : samba on SL6.x i386/x86_64 (20170321)NessusScientific Linux Local Security Checks
medium
99224Scientific Linux Security Update : samba4 on SL6.x i386/x86_64 (20170321)NessusScientific Linux Local Security Checks
medium
99072Oracle Linux 6 : samba4 (ELSA-2017-0744)NessusOracle Linux Local Security Checks
medium
99069Oracle Linux 6 : samba (ELSA-2017-0662)NessusOracle Linux Local Security Checks
medium
97960CentOS 6 : samba4 (CESA-2017:0744)NessusCentOS Local Security Checks
medium
97957CentOS 6 : samba (CESA-2017:0662)NessusCentOS Local Security Checks
medium
97931RHEL 7 : Gluster Storage (RHSA-2017:0495)NessusRed Hat Local Security Checks
medium
97930RHEL 6 : Gluster Storage (RHSA-2017:0494)NessusRed Hat Local Security Checks
medium
97884RHEL 6 : samba4 (RHSA-2017:0744)NessusRed Hat Local Security Checks
medium
97880RHEL 6 : samba (RHSA-2017:0662)NessusRed Hat Local Security Checks
medium
96361Fedora 24 : 2:samba (2017-d0a537062c)NessusFedora Local Security Checks
medium
9857Samba 4.3.x < 4.3.13 / 4.4.x < 4.4.8 / 4.5.x < 4.5.3 Multiple VulnerabilitiesNessus Network MonitorSamba
high
96294openSUSE Security Update : samba (openSUSE-2017-12)NessusSuSE Local Security Checks
medium
96293openSUSE Security Update : samba (openSUSE-2017-11)NessusSuSE Local Security Checks
medium
96262SUSE SLES11 Security Update : samba (SUSE-SU-2016:3300-1)NessusSuSE Local Security Checks
medium
96261SUSE SLES12 Security Update : samba (SUSE-SU-2016:3299-1)NessusSuSE Local Security Checks
medium
96260SUSE SLES11 Security Update : samba (SUSE-SU-2016:3298-1)NessusSuSE Local Security Checks
medium
96192Debian DLA-776-1 : samba security updateNessusDebian Local Security Checks
low
96166Slackware 14.2 / current : samba (SSA:2016-363-02)NessusSlackware Local Security Checks
medium
96164FreeBSD : samba -- multiple vulnerabilities (e4bc323f-cc73-11e6-b704-000c292e4fd8)NessusFreeBSD Local Security Checks
medium
96149SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2016:3272-1)NessusSuSE Local Security Checks
medium
96148SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2016:3271-1)NessusSuSE Local Security Checks
medium
96142Samba 4.3.x < 4.3.13 / 4.4.x < 4.4.8 / 4.5.x < 4.5.3 Multiple VulnerabilitiesNessusMisc.
medium
96108Fedora 25 : 2:samba (2016-364f61377b)NessusFedora Local Security Checks
medium
95949Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS / 16.10 : samba vulnerabilities (USN-3158-1)NessusUbuntu Local Security Checks
medium
95936Debian DSA-3740-1 : samba - security updateNessusDebian Local Security Checks
medium