CVE-2012-2111

Published: Apr 30, 2012Modified: Apr 29, 2026

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability: 8.0 / Impact: 6.4

Source: NVD

Description

The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not properly restrict modifications to the privileges database, which allows remote authenticated users to obtain the "take ownership" privilege via an LSA connection.

Affected (37)

Products: Samba: Samba

1 product

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	Version 3.4.0
Samba Samba	Version 3.4.10
Samba Samba	Version 3.4.11
Samba Samba	Version 3.4.12
Samba Samba	Version 3.4.13
Samba Samba	Version 3.4.14
Samba Samba	Version 3.4.15
Samba Samba	Version 3.4.16
Samba Samba	Version 3.4.1
Samba Samba	Version 3.4.2
Samba Samba	Version 3.4.3
Samba Samba	Version 3.4.4
Samba Samba	Version 3.4.5
Samba Samba	Version 3.4.6
Samba Samba	Version 3.4.7
Samba Samba	Version 3.4.8
Samba Samba	Version 3.4.9

Configuration B

15 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	Version 3.5.0
Samba Samba	Version 3.5.10
Samba Samba	Version 3.5.11
Samba Samba	Version 3.5.12
Samba Samba	Version 3.5.13
Samba Samba	Version 3.5.14
Samba Samba	Version 3.5.1
Samba Samba	Version 3.5.2
Samba Samba	Version 3.5.3
Samba Samba	Version 3.5.4
Samba Samba	Version 3.5.5
Samba Samba	Version 3.5.6
Samba Samba	Version 3.5.7
Samba Samba	Version 3.5.8
Samba Samba	Version 3.5.9

Configuration C

5 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	Version 3.6.0
Samba Samba	Version 3.6.1
Samba Samba	Version 3.6.2
Samba Samba	Version 3.6.3
Samba Samba	Version 3.6.4

Related CWEs

References (42)

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079662.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079670.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079677.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00023.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00001.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00003.html

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=134323086902585&w=2

Source: secalert@redhat.com

http://osvdb.org/81648

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2012-0533.html

Source: secalert@redhat.com

http://secunia.com/advisories/48976

Source: secalert@redhat.com

http://secunia.com/advisories/48984

Source: secalert@redhat.com

http://secunia.com/advisories/48996

Source: secalert@redhat.com

http://secunia.com/advisories/48999

Source: secalert@redhat.com

http://secunia.com/advisories/49017

Source: secalert@redhat.com

http://secunia.com/advisories/49030

Source: secalert@redhat.com

http://www.collax.com/produkte/AllinOne-server-for-small-businesses#id2565578

Source: secalert@redhat.com

http://www.debian.org/security/2012/dsa-2463

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2012:067

Source: secalert@redhat.com

http://www.samba.org/samba/security/CVE-2012-2111

Source: secalert@redhat.com

PatchVendor Advisory

http://www.securitytracker.com/id?1026988

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-1434-1

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079662.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079670.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079677.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00023.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00001.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00003.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=134323086902585&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/81648

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2012-0533.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/48976

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/48984

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/48996

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/48999

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/49017

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/49030

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.collax.com/produkte/AllinOne-server-for-small-businesses#id2565578

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2012/dsa-2463

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2012:067

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.samba.org/samba/security/CVE-2012-2111

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securitytracker.com/id?1026988

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1434-1

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.