CVE-2012-6150

Published: Dec 3, 2013Modified: Apr 29, 2026

3.6

Vector

AV:N/AC:H/Au:S/C:P/I:P/A:N

Exploitability: 3.9 / Impact: 4.9

Source: NVD

Description

The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake.

Affected (9)

Products: Samba: Samba · Canonical: Ubuntu Linux

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	From 3.3.10 to 3.4.0
Samba Samba	From 3.4.3 to 3.6.22
Samba Samba	From 4.0.0 to 4.0.13
Samba Samba	From 4.1.0 to 4.1.3

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 10.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 12.10
Canonical Ubuntu Linux	Version 13.04
Canonical Ubuntu Linux	Version 13.10

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (34)

http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136864.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134717.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00002.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2013-12/msg00088.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2014-03/msg00063.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=141660010015249&w=2

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://openwall.com/lists/oss-security/2013/12/03/5

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2014-0330.html

Source: secalert@redhat.com

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201502-15.xml

Source: secalert@redhat.com

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2013:299

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2054-1

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1036897

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://bugzilla.samba.org/show_bug.cgi?id=10300

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

https://lists.samba.org/archive/samba-technical/2012-June/084593.html

Source: secalert@redhat.com

ExploitVendor Advisory

https://lists.samba.org/archive/samba-technical/2013-November/096411.html

Source: secalert@redhat.com

ExploitVendor Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136864.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134717.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2013-12/msg00088.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2014-03/msg00063.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://marc.info/?l=bugtraq&m=141660010015249&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://openwall.com/lists/oss-security/2013/12/03/5

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2014-0330.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201502-15.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2013:299

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.ubuntu.com/usn/USN-2054-1

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1036897

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://bugzilla.samba.org/show_bug.cgi?id=10300

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatchThird Party Advisory

https://lists.samba.org/archive/samba-technical/2012-June/084593.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

https://lists.samba.org/archive/samba-technical/2013-November/096411.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

Timeline

No history available yet.