Samba Active Directory Domain Controller LDAP Permissions Error Lets Remote Authenticated Users Modify User Passwords on the Target System
|
SecurityTracker Alert ID: 1040494 |
SecurityTracker URL: http://securitytracker.com/id/1040494
|
CVE Reference:
CVE-2018-1057
(Links to External Site)
|
Date: Mar 13 2018
|
Impact:
Modification of authentication information
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 4.0.0 and after
|
Description:
A vulnerability was reported in Samba. A remote authenticated user can modify user passwords on the target system.
On an Active Directory (AD) domain controller (DC), the LDAP server does not properly validate permissions when modifying passwords via LDAP. A remote authenticated user on can change the passwords of other users, including administrative users and service accounts, on the target system.
Bjorn Baumbach from SerNet reported this vulnerability.
|
Impact:
A remote authenticated user on can change the passwords of other users, including administrative users and service accounts, on the target system.
|
Solution:
The vendor has issued a fix (4.5.16, 4.6.14, 4.7.6).
The vendor advisory is available at:
https://www.samba.org/samba/security/CVE-2018-1057.html
|
Vendor URL: www.samba.org/samba/security/CVE-2018-1057.html (Links to External Site)
|
Cause:
Access control error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Subject: https://www.samba.org/samba/security/CVE-2018-1057.html
|
|
|