All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.
http://www.securityfocus.com/bid/103387
http://www.securitytracker.com/id/1040493
https://access.redhat.com/errata/RHSA-2018:1860
https://access.redhat.com/errata/RHSA-2018:1883
https://access.redhat.com/errata/RHSA-2018:2612
https://access.redhat.com/errata/RHSA-2018:2613
https://access.redhat.com/errata/RHSA-2018:3056
https://bugzilla.redhat.com/show_bug.cgi?id=1538771
https://lists.debian.org/debian-lts-announce/2018/03/msg00024.html
https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html
https://security.gentoo.org/glsa/201805-07
https://security.netapp.com/advisory/ntap-20180313-0001/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03834en_us
https://usn.ubuntu.com/3595-1/
https://usn.ubuntu.com/3595-2/
Source: MITRE
Published: 2018-03-13
Updated: 2020-12-04
Type: CWE-476
Base Score: 3.3
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 6.5
Severity: LOW
Base Score: 4.3
Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Impact Score: 1.4
Exploitability Score: 2.8
Severity: MEDIUM
OR
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
OR
OR
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
OR
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
127392 | NewStart CGSL MAIN 4.05 : samba Vulnerability (NS-SA-2019-0134) | Nessus | NewStart CGSL Local Security Checks | low |
127380 | NewStart CGSL MAIN 4.05 : samba4 Vulnerability (NS-SA-2019-0128) | Nessus | NewStart CGSL Local Security Checks | low |
127271 | NewStart CGSL CORE 5.04 / MAIN 5.04 : samba Multiple Vulnerabilities (NS-SA-2019-0069) | Nessus | NewStart CGSL Local Security Checks | medium |
124911 | EulerOS Virtualization for ARM 64 3.0.1.0 : samba (EulerOS-SA-2019-1408) | Nessus | Huawei Local Security Checks | high |
124628 | EulerOS 2.0 SP3 : samba (EulerOS-SA-2019-1342) | Nessus | Huawei Local Security Checks | medium |
123959 | Debian DLA-1754-1 : samba security update | Nessus | Debian Local Security Checks | medium |
123741 | EulerOS Virtualization 2.5.3 : samba (EulerOS-SA-2019-1273) | Nessus | Huawei Local Security Checks | medium |
123624 | EulerOS 2.0 SP5 : samba (EulerOS-SA-2019-1150) | Nessus | Huawei Local Security Checks | medium |
123599 | EulerOS 2.0 SP2 : samba (EulerOS-SA-2019-1125) | Nessus | Huawei Local Security Checks | medium |
121359 | Amazon Linux AMI : samba (ALAS-2018-1126) | Nessus | Amazon Linux Local Security Checks | medium |
121068 | Juniper Junos Space 18.4.x < 18.4R1 Multiple Vulnerabilities (JSA10917) | Nessus | Junos Local Security Checks | high |
119781 | Amazon Linux 2 : samba (ALAS-2018-1126) | Nessus | Amazon Linux Local Security Checks | medium |
119691 | CentOS 7 : samba (CESA-2018:3056) | Nessus | CentOS Local Security Checks | medium |
119198 | Scientific Linux Security Update : samba on SL7.x x86_64 (20181030) | Nessus | Scientific Linux Local Security Checks | medium |
118766 | Oracle Linux 7 : samba (ELSA-2018-3056) | Nessus | Oracle Linux Local Security Checks | medium |
118519 | RHEL 7 : samba (RHSA-2018:3056) | Nessus | Red Hat Local Security Checks | medium |
118282 | SUSE SLES12 Security Update : samba (SUSE-SU-2018:2339-2) | Nessus | SuSE Local Security Checks | medium |
117320 | RHEL 7 : Storage Server (RHSA-2018:2613) | Nessus | Red Hat Local Security Checks | medium |
117319 | RHEL 6 : Storage Server (RHSA-2018:2612) (deprecated) | Nessus | Red Hat Local Security Checks | medium |
111785 | SUSE SLES12 Security Update : samba (SUSE-SU-2018:2339-1) | Nessus | SuSE Local Security Checks | medium |
111742 | SUSE SLES12 Security Update : samba (SUSE-SU-2018:2321-1) | Nessus | SuSE Local Security Checks | high |
110891 | Scientific Linux Security Update : samba on SL6.x i386/x86_64 (20180619) | Nessus | Scientific Linux Local Security Checks | medium |
110890 | Scientific Linux Security Update : samba4 on SL6.x i386/x86_64 (20180619) | Nessus | Scientific Linux Local Security Checks | low |
110705 | Oracle Linux 6 : samba4 (ELSA-2018-1883) | Nessus | Oracle Linux Local Security Checks | low |
110702 | Oracle Linux 6 : samba (ELSA-2018-1860) | Nessus | Oracle Linux Local Security Checks | low |
110649 | CentOS 6 : samba4 (CESA-2018:1883) | Nessus | CentOS Local Security Checks | low |
110646 | CentOS 6 : samba (CESA-2018:1860) | Nessus | CentOS Local Security Checks | low |
110604 | RHEL 6 : samba4 (RHSA-2018:1883) | Nessus | Red Hat Local Security Checks | low |
110601 | RHEL 6 : samba (RHSA-2018:1860) | Nessus | Red Hat Local Security Checks | low |
109974 | GLSA-201805-07 : Samba: Multiple vulnerabilities (SambaCry) | Nessus | Gentoo Local Security Checks | critical |
108687 | SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2018:0832-1) | Nessus | SuSE Local Security Checks | low |
108661 | Debian DLA-1320-1 : samba security update | Nessus | Debian Local Security Checks | low |
108630 | openSUSE Security Update : samba / talloc / tevent (openSUSE-2018-300) | Nessus | SuSE Local Security Checks | low |
108581 | SUSE SLES11 Security Update : samba (SUSE-SU-2018:0774-1) | Nessus | SuSE Local Security Checks | low |
108529 | SUSE SLED12 / SLES12 Security Update : samba, talloc, tevent (SUSE-SU-2018:0754-1) | Nessus | SuSE Local Security Checks | low |
108501 | Fedora 26 : 2:samba (2018-7d0acd608b) | Nessus | Fedora Local Security Checks | medium |
108378 | Samba 4.5.x < 4.5.16 / 4.6.x < 4.6.14 / 4.7.x < 4.7.6 Multiple Vulnerabilities | Nessus | Misc. | medium |
108349 | Fedora 27 : 2:samba / libldb (2018-c5c651ac44) | Nessus | Fedora Local Security Checks | medium |
108335 | Ubuntu 14.04 LTS / 16.04 LTS / 17.10 : Samba vulnerabilities (USN-3595-1) | Nessus | Ubuntu Local Security Checks | medium |
108316 | FreeBSD : samba -- multiple vulnerabilities (fb26f78a-26a9-11e8-a1c2-00505689d4ae) | Nessus | FreeBSD Local Security Checks | medium |
108304 | Debian DSA-4135-1 : samba - security update | Nessus | Debian Local Security Checks | medium |