CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
73.8%
Andrew Bartlett discovered that Samba incorrectly handled delegation of
authority when being used as an Active Directory Domain Controller. An
attacker given delegation privileges could use this issue to escalate their
privileges further.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.10 | noarch | samba | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libnss-winbind | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libpam-smbpass | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libpam-winbind | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libparse-pidl-perl | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libsmbclient | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libsmbclient-dev | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libsmbsharemodes-dev | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libsmbsharemodes0 | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libwbclient-dev | < 2:4.1.11+dfsg-1ubuntu2.1 | UNKNOWN |