Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Samba < 3.0.26 'idmap_ad.co' Local Privilege Escalation

Low

Synopsis

The remote host is vulnerable to a local 'privilege escalation' flaw.

Description

According to its banner, the version of the Samba server installed on the remote host is affected by a flaw where a local attacker can gain group-0 access. In order for the exploit to work, the local system must be configured to use Microsoft Active Directory and return a NULL value for the group ID. Successful exploitation would result in the local attacker gaining elevated access on the local machine.

Solution

Upgrade to version 3.0.26 or higher.