CVE-2018-1057

high

Description

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Domain Controllers).

References

https://www.samba.org/samba/security/CVE-2018-1057.html

https://bugzilla.redhat.com/show_bug.cgi?id=1553553

https://www.debian.org/security/2018/dsa-4135

https://security.netapp.com/advisory/ntap-20180313-0001/

http://www.securitytracker.com/id/1040494

http://www.securityfocus.com/bid/103382

https://www.synology.com/support/security/Synology_SA_18_08

https://usn.ubuntu.com/3595-1/

https://security.gentoo.org/glsa/201805-07

https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html

Details

Source: MITRE

Published: 2018-03-13

Updated: 2022-08-29

Type: CWE-863

Risk Information

CVSS v2

Base Score: 6.5

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8

Severity: MEDIUM

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH