CVE-2018-1057

Published: Mar 13, 2018Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Domain Controllers).

Affected (7)

Products: Canonical: Ubuntu Linux · Debian: Debian Linux · Samba: Samba

1 product

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 17.10
Debian Debian Linux	Version 8.0

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	From 4.0.0 to 4.5.16
Samba Samba	From 4.6.0 to 4.6.14
Samba Samba	From 4.7.0 to 4.7.6

Related CWEs

Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

References (20)

http://www.securityfocus.com/bid/103382

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040494

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=1553553

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/201805-07

Source: secalert@redhat.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20180313-0001/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3595-1/

Source: secalert@redhat.com

Third Party Advisory

https://www.debian.org/security/2018/dsa-4135

Source: secalert@redhat.com

Third Party Advisory

https://www.samba.org/samba/security/CVE-2018-1057.html

Source: secalert@redhat.com

MitigationVendor Advisory

https://www.synology.com/support/security/Synology_SA_18_08

Source: secalert@redhat.com

Third Party Advisory

http://www.securityfocus.com/bid/103382

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040494

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=1553553

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/201805-07

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://security.netapp.com/advisory/ntap-20180313-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3595-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.debian.org/security/2018/dsa-4135

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.samba.org/samba/security/CVE-2018-1057.html

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationVendor Advisory

https://www.synology.com/support/security/Synology_SA_18_08

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.