Amazon Linux AMI : samba (ALAS-2016-634)

Medium Nessus Plugin ID 87968

Synopsis

The remote Amazon Linux AMI host is missing a security update.

Description

A missing access control flaw was found in Samba. A remote, authenticated attacker could use this flaw to view the current snapshot on a Samba share, despite not having DIRECTORY_LIST access rights.

An access flaw was found in the way Samba verified symbolic links when creating new files on a Samba share. A remote attacker could exploit this flaw to gain access to files outside of Samba's share path.

A memory-read flaw was found in the way the libldb library processed LDB DN records with a null byte. An authenticated, remote attacker could use this flaw to read heap-memory pages from the server.

A man-in-the-middle vulnerability was found in the way 'connection signing' was implemented by Samba. A remote attacker could use this flaw to downgrade an existing Samba client connection and force the use of plain text.

Solution

Run 'yum update samba' to update your system.

See Also

https://alas.aws.amazon.com/ALAS-2016-634.html

Plugin Details

Severity: Medium

ID: 87968

File Name: ala_ALAS-2016-634.nasl

Version: 2.6

Type: local

Agent: unix

Published: 2016/01/19

Updated: 2018/04/18

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vulnerability Information

CPE: p-cpe:/a:amazon:linux:ctdb, p-cpe:/a:amazon:linux:ctdb-devel, p-cpe:/a:amazon:linux:ctdb-tests, p-cpe:/a:amazon:linux:libsmbclient, p-cpe:/a:amazon:linux:libsmbclient-devel, p-cpe:/a:amazon:linux:libwbclient, p-cpe:/a:amazon:linux:libwbclient-devel, p-cpe:/a:amazon:linux:samba, p-cpe:/a:amazon:linux:samba-client, p-cpe:/a:amazon:linux:samba-client-libs, p-cpe:/a:amazon:linux:samba-common, p-cpe:/a:amazon:linux:samba-common-libs, p-cpe:/a:amazon:linux:samba-common-tools, p-cpe:/a:amazon:linux:samba-debuginfo, p-cpe:/a:amazon:linux:samba-devel, p-cpe:/a:amazon:linux:samba-libs, p-cpe:/a:amazon:linux:samba-pidl, p-cpe:/a:amazon:linux:samba-python, p-cpe:/a:amazon:linux:samba-test, p-cpe:/a:amazon:linux:samba-test-devel, p-cpe:/a:amazon:linux:samba-test-libs, p-cpe:/a:amazon:linux:samba-winbind, p-cpe:/a:amazon:linux:samba-winbind-clients, p-cpe:/a:amazon:linux:samba-winbind-krb5-locator, p-cpe:/a:amazon:linux:samba-winbind-modules, cpe:/o:amazon:linux

Patch Publication Date: 2016/01/18

Reference Information

CVE: CVE-2015-5252, CVE-2015-5296, CVE-2015-5299, CVE-2015-5330

ALAS: 2016-634