Lucene search
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2016-1487.NASLHistoryJul 26, 2016 - 12:00 a.m.
RHEL 6 : samba4 (RHSA-2016:1487)
2016-07-2600:00:00
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
0.005 Low
EPSS
Percentile
76.5%
An update for samba4 is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Samba is an open source implementation of the Server Message Block (SMB) or Common Internet File System (CIFS) protocol, which allows PC-compatible machines to share files, printers, and other information.
Security Fix(es) :
- A flaw was found in the way Samba initiated signed DCE/RPC connections. A man-in-the-middle attacker could use this flaw to downgrade the connection to not use signing and therefore impersonate the server. (CVE-2016-2119)
Red Hat would like to thank the Samba project for reporting this issue. Upstream acknowledges Stefan Metzmacher as the original reporter.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2016:1487. The text
# itself is copyright (C) Red Hat, Inc.
#
include("compat.inc");
if (description)
{
script_id(92553);
script_version("2.14");
script_cvs_date("Date: 2019/10/24 15:35:41");
script_cve_id("CVE-2016-2119");
script_xref(name:"RHSA", value:"2016:1487");
script_name(english:"RHEL 6 : samba4 (RHSA-2016:1487)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"An update for samba4 is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security
impact of Moderate. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
Samba is an open source implementation of the Server Message Block
(SMB) or Common Internet File System (CIFS) protocol, which allows
PC-compatible machines to share files, printers, and other
information.
Security Fix(es) :
* A flaw was found in the way Samba initiated signed DCE/RPC
connections. A man-in-the-middle attacker could use this flaw to
downgrade the connection to not use signing and therefore impersonate
the server. (CVE-2016-2119)
Red Hat would like to thank the Samba project for reporting this
issue. Upstream acknowledges Stefan Metzmacher as the original
reporter."
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/errata/RHSA-2016:1487"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2016-2119"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-dc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-dc-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-pidl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-python");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-test");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-winbind");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-winbind-clients");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:samba4-winbind-krb5-locator");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/07/07");
script_set_attribute(attribute:"patch_publication_date", value:"2016/07/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/07/26");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.x", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2016:1487";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-client-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-client-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-client-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-common-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-common-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-common-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-dc-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-dc-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-dc-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-dc-libs-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-dc-libs-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-dc-libs-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-debuginfo-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-debuginfo-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-debuginfo-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-devel-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-devel-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-devel-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-libs-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-libs-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-libs-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-pidl-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-pidl-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-pidl-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-python-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-python-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-python-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-test-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-test-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-test-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-winbind-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-winbind-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-winbind-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-winbind-clients-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-winbind-clients-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-winbind-clients-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"i686", reference:"samba4-winbind-krb5-locator-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"samba4-winbind-krb5-locator-4.2.10-7.el6_8")) flag++;
if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"samba4-winbind-krb5-locator-4.2.10-7.el6_8")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "samba4 / samba4-client / samba4-common / samba4-dc / samba4-dc-libs / etc");
}
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | samba4-devel | p-cpe:/a:redhat:enterprise_linux:samba4-devel |
| redhat | enterprise_linux | samba4-libs | p-cpe:/a:redhat:enterprise_linux:samba4-libs |
| redhat | enterprise_linux | samba4-pidl | p-cpe:/a:redhat:enterprise_linux:samba4-pidl |
| redhat | enterprise_linux | samba4-python | p-cpe:/a:redhat:enterprise_linux:samba4-python |
| redhat | enterprise_linux | samba4-test | p-cpe:/a:redhat:enterprise_linux:samba4-test |
| redhat | enterprise_linux | samba4-winbind | p-cpe:/a:redhat:enterprise_linux:samba4-winbind |
| redhat | enterprise_linux | samba4 | p-cpe:/a:redhat:enterprise_linux:samba4 |
| redhat | enterprise_linux | samba4-client | p-cpe:/a:redhat:enterprise_linux:samba4-client |
| redhat | enterprise_linux | samba4-common | p-cpe:/a:redhat:enterprise_linux:samba4-common |
| redhat | enterprise_linux | samba4-dc | p-cpe:/a:redhat:enterprise_linux:samba4-dc |
Related
redhat
redhat
(RHSA-2016:1486) Moderate: samba security and bug fix update
2016-07-26 05:06:35
(RHSA-2016:1487) Moderate: samba4 security update
2016-07-26 05:06:37
(RHSA-2016:1494) Moderate: samba security update
2016-07-26 11:44:33
nessus
nessus
Oracle Linux 7 : samba (ELSA-2016-1486)
2016-07-27 00:00:00
openSUSE Security Update : samba (openSUSE-2016-881)
2016-07-20 00:00:00
Amazon Linux AMI : samba (ALAS-2016-732)
2016-08-18 00:00:00
openvas
openvas
Fedora Update for samba FEDORA-2016-0acec022f4
2016-08-02 00:00:00
RedHat Update for samba4 RHSA-2016:1487-01
2016-08-02 00:00:00
Fedora Update for samba FEDORA-2016-48b53757a9
2016-08-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package samba version 4.4.5-alt1
2016-07-10 00:00:00
Security fix for the ALT Linux 7 package samba version 4.4.5-alt1
2016-07-10 00:00:00
Security fix for the ALT Linux 10 package samba version 4.4.5-alt1
2016-07-08 00:00:00
centos
centos
samba4 security update
2016-07-26 11:29:16
ctdb, libsmbclient, libwbclient, samba security update
2016-07-26 11:26:50
prion
prion
Design/Logic Flaw
2016-07-07 15:59:00
debiancve
debiancve
CVE-2016-2119
2016-07-07 15:59:00
redhatcve
redhatcve
CVE-2016-2119
2016-07-07 10:48:53
f5
f5
SOL13364192 - samba vulnerability CVE-2016-2119
2016-10-11 00:00:00
K13364192 : Samba vulnerability CVE-2016-2119
2016-10-11 00:00:00
nvd
nvd
CVE-2016-2119
2016-07-07 15:59:00
amazon
amazon
Medium: samba
2016-08-17 13:30:00
ubuntu
ubuntu
Samba vulnerability
2016-09-28 00:00:00
cve
cve
CVE-2016-2119
2016-07-07 15:59:00
freebsd
freebsd
samba -- client side SMB2/3 required signing can be downgraded
2016-07-07 00:00:00
slackware
slackware
[slackware-security] samba
2016-07-07 19:54:48
ibm
ibm
ubuntucve
ubuntucve
CVE-2016-2119
2016-07-07 00:00:00
samba
samba
Client side SMB2/3 required signing can be downgraded
2016-07-07 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2019-01-15 09:12:19
oraclelinux
oraclelinux
samba4 security update
2016-07-26 00:00:00
samba security and bug fix update
2016-07-26 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: samba-4.4.5-1.fc24
2016-07-12 15:10:30
[SECURITY] Fedora 23 Update: samba-4.3.11-1.fc23
2016-07-15 10:24:43
cvelist
cvelist
CVE-2016-2119
2016-07-07 15:00:00
debian
debian
[SECURITY] [DSA 3740-1] samba security update
2016-12-19 10:16:48
[SECURITY] [DSA 3740-1] samba security update
2016-12-19 10:16:48
osv
osv
samba - security update
2016-12-19 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2018-05-22 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
0.005 Low
EPSS
Percentile
76.5%
Related for REDHAT-RHSA-2016-1487.NASL