CVE-2023-42670

2023-11-0308:15:07

Debian Security Bug Tracker

security-tracker.debian.org

samba

rpc

vulnerability

ad dc

disruption

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.5%

JSON

A flaw was found in Samba. It is susceptible to a vulnerability where multiple incompatible RPC listeners can be initiated, causing disruptions in the AD DC service. When Samba’s RPC server experiences a high load or unresponsiveness, servers intended for non-AD DC purposes (for example, NT4-emulation “classic DCs”) can erroneously start and compete for the same unix domain sockets. This issue leads to partial query responses from the AD DC, causing issues such as “The procedure number is out of range” when using tools like Active Directory Users. This flaw allows an attacker to disrupt AD DC services.

OSVersionArchitecturePackageVersionFilename
Debian12allsamba< 2:4.17.12+dfsg-0+deb12u1samba_2:4.17.12+dfsg-0+deb12u1_all.deb
Debian11allsamba< 2:4.13.13+dfsg-1~deb11u6samba_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian999allsamba< 2:4.19.1+dfsg-1samba_2:4.19.1+dfsg-1_all.deb
Debian13allsamba< 2:4.19.1+dfsg-1samba_2:4.19.1+dfsg-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	samba	< 2:4.17.12+dfsg-0+deb12u1	samba_2:4.17.12+dfsg-0+deb12u1_all.deb
Debian	11	all	samba	< 2:4.13.13+dfsg-1~deb11u6	samba_2:4.13.13+dfsg-1~deb11u6_all.deb
Debian	999	all	samba	< 2:4.19.1+dfsg-1	samba_2:4.19.1+dfsg-1_all.deb
Debian	13	all	samba	< 2:4.19.1+dfsg-1	samba_2:4.19.1+dfsg-1_all.deb