CVE-2019-3870

Published: Apr 9, 2019Modified: Jan 14, 2025

6.1

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Exploitability: 1.8 / Impact: 4.2

Source: NVD

Description

A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode 0700, that is owner (root) only access. However in some upgraded installations it will have other permissions, such as 0755, because this was the default before Samba 4.8. Within this directory, files are created with mode 0666, which is world-writable, including a sample krb5.conf, and the list of DNS names and servicePrincipalName values to update.

Affected (11)

Products: Samba: Samba · Fedoraproject: Fedora · Synology: Directory Server, Diskstation Manager, Router Manager, Skynas Firmware, Vs960hd Firmware

1 product

1 product

5 products

Directory Server

Diskstation Manager

Skynas Firmware

Vs960hd Firmware

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Samba Samba	From 4.10.0 to 4.10.2
Samba Samba	From 4.9.0 to 4.9.6

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 29
Fedoraproject Fedora	Version 30

Configuration C

5 vulnerable

Vulnerable Software	Affected Versions
Synology Directory Server	All versions
Synology Diskstation Manager	Version 5.2
Synology Diskstation Manager	Version 6.1
Synology Diskstation Manager	Version 6.2
Synology Router Manager	Version 1.2

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synology Skynas Firmware	All versions

Running on/with	Platform Versions
Synology Skynas	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Synology Vs960hd Firmware	Before 2.3.6-1720

Running on/with	Platform Versions
Synology Vs960hd	All versions

Related CWEs

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (14)

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3870

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://bugzilla.samba.org/show_bug.cgi?id=13834

Source: secalert@redhat.com

ExploitIssue TrackingPatchVendor Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6354GALK73CZWQKFUG7AWB6EIEGFMF62/

Source: secalert@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTJVFA3RZ6G2IZDTVKLHRMX6QBYA4GPA/

Source: secalert@redhat.com

https://support.f5.com/csp/article/K20804356

Source: secalert@redhat.com

Third Party Advisory

https://www.samba.org/samba/security/CVE-2019-3870.html

Source: secalert@redhat.com

MitigationPatchVendor Advisory

https://www.synology.com/security/advisory/Synology_SA_19_15

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3870

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://bugzilla.samba.org/show_bug.cgi?id=13834

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingPatchVendor Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6354GALK73CZWQKFUG7AWB6EIEGFMF62/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTJVFA3RZ6G2IZDTVKLHRMX6QBYA4GPA/

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.f5.com/csp/article/K20804356

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.samba.org/samba/security/CVE-2019-3870.html

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationPatchVendor Advisory

https://www.synology.com/security/advisory/Synology_SA_19_15

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.