This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Security Fix(es) :
- It was found that Samba always requested forwardable
tickets when using Kerberos authentication. A service to
which Samba authenticated using Kerberos could
subsequently use the ticket to impersonate Samba to
other services or domain users. (CVE-2016-2125)
- A flaw was found in the way Samba handled PAC (Privilege
Attribute Certificate) checksums. A remote,
authenticated attacker could use this flaw to crash the
winbindd process. (CVE-2016-2126)
See also :
Update the affected packages.
Risk factor :