CVE-2018-10858

MEDIUM

Description

A heap-buffer overflow was found in the way samba clients processed extra long filename in a directory listing. A malicious samba server could use this flaw to cause arbitrary code execution on a samba client. Samba versions before 4.6.16, 4.7.9 and 4.8.4 are vulnerable.

References

http://www.securityfocus.com/bid/105085

http://www.securitytracker.com/id/1042002

https://access.redhat.com/errata/RHSA-2018:2612

https://access.redhat.com/errata/RHSA-2018:2613

https://access.redhat.com/errata/RHSA-2018:3056

https://access.redhat.com/errata/RHSA-2018:3470

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10858

https://kc.mcafee.com/corporate/index?page=content&id=SB10284

https://security.netapp.com/advisory/ntap-20180814-0001/

https://usn.ubuntu.com/3738-1/

https://www.debian.org/security/2018/dsa-4271

https://www.samba.org/samba/security/CVE-2018-10858.html

Details

Source: MITRE

Published: 2018-08-22

Updated: 2019-06-26

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 6.5

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8

Severity: MEDIUM

CVSS v3.0

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH

Vulnerable Software

Tenable Plugins

View all (34 total)

ID	Name	Product	Family	Severity
134927	GLSA-202003-52 : Samba: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	medium
127271	NewStart CGSL CORE 5.04 / MAIN 5.04 : samba Multiple Vulnerabilities (NS-SA-2019-0069)	Nessus	NewStart CGSL Local Security Checks	medium
124911	EulerOS Virtualization for ARM 64 3.0.1.0 : samba (EulerOS-SA-2019-1408)	Nessus	Huawei Local Security Checks	high
124628	EulerOS 2.0 SP3 : samba (EulerOS-SA-2019-1342)	Nessus	Huawei Local Security Checks	medium
123741	EulerOS Virtualization 2.5.3 : samba (EulerOS-SA-2019-1273)	Nessus	Huawei Local Security Checks	medium
123624	EulerOS 2.0 SP5 : samba (EulerOS-SA-2019-1150)	Nessus	Huawei Local Security Checks	medium
123599	EulerOS 2.0 SP2 : samba (EulerOS-SA-2019-1125)	Nessus	Huawei Local Security Checks	medium
123268	openSUSE Security Update : samba (openSUSE-2019-617)	Nessus	SuSE Local Security Checks	medium
121359	Amazon Linux AMI : samba (ALAS-2018-1126)	Nessus	Amazon Linux Local Security Checks	medium
120746	Fedora 28 : 2:samba / libldb (2018-bc22d6c7bc)	Nessus	Fedora Local Security Checks	medium
120077	SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2018:2318-1)	Nessus	SuSE Local Security Checks	medium
119781	Amazon Linux 2 : samba (ALAS-2018-1126)	Nessus	Amazon Linux Local Security Checks	medium
119691	CentOS 7 : samba (CESA-2018:3056)	Nessus	CentOS Local Security Checks	medium
119198	Scientific Linux Security Update : samba on SL7.x x86_64 (20181030)	Nessus	Scientific Linux Local Security Checks	medium
118790	RHEL 7 : Virtualization Manager (RHSA-2018:3470)	Nessus	Red Hat Local Security Checks	high
118766	Oracle Linux 7 : samba (ELSA-2018-3056)	Nessus	Oracle Linux Local Security Checks	medium
118519	RHEL 7 : samba (RHSA-2018:3056)	Nessus	Red Hat Local Security Checks	medium
118282	SUSE SLES12 Security Update : samba (SUSE-SU-2018:2339-2)	Nessus	SuSE Local Security Checks	medium
118278	SUSE SLES12 Security Update : samba (SUSE-SU-2018:2320-2)	Nessus	SuSE Local Security Checks	medium
117320	RHEL 7 : Storage Server (RHSA-2018:2613)	Nessus	Red Hat Local Security Checks	medium
117319	RHEL 6 : Storage Server (RHSA-2018:2612) (deprecated)	Nessus	Red Hat Local Security Checks	medium
112051	Fedora 27 : 2:samba (2018-8e4d871867)	Nessus	Fedora Local Security Checks	medium
112000	openSUSE Security Update : samba (openSUSE-2018-891)	Nessus	SuSE Local Security Checks	medium
111999	openSUSE Security Update : samba (openSUSE-2018-890)	Nessus	SuSE Local Security Checks	medium
111996	Slackware 14.0 / 14.1 / 14.2 / current : samba (SSA:2018-229-02)	Nessus	Slackware Local Security Checks	medium
111974	4.6.x < 4.6.16 / 4.7.x < 4.7.9 / 4.8.x < 4.8.4 Multiple Vulnerabilities	Nessus	Misc.	medium
111785	SUSE SLES12 Security Update : samba (SUSE-SU-2018:2339-1)	Nessus	SuSE Local Security Checks	medium
111748	Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Samba vulnerabilities (USN-3738-1)	Nessus	Ubuntu Local Security Checks	medium
111747	SUSE SLES11 Security Update : samba (SUSE-SU-2018:2329-1)	Nessus	SuSE Local Security Checks	medium
111742	SUSE SLES12 Security Update : samba (SUSE-SU-2018:2321-1)	Nessus	SuSE Local Security Checks	high
111741	SUSE SLES12 Security Update : samba (SUSE-SU-2018:2320-1)	Nessus	SuSE Local Security Checks	medium
111740	SUSE SLED12 / SLES12 Security Update : samba (SUSE-SU-2018:2319-1)	Nessus	SuSE Local Security Checks	medium
111722	FreeBSD : samba -- multiple vulnerabilities (c4e9a427-9fc2-11e8-802a-000c29a1e3ec)	Nessus	FreeBSD Local Security Checks	medium
111706	Debian DSA-4271-1 : samba - security update	Nessus	Debian Local Security Checks	medium