A flaw was found in the way Samba initiated signed DCE/RPC connections. A man-in-the-middle attacker could use this flaw to downgrade the connection to not use signing and therefore impersonate the server.

References

bugzilla.redhat.com/show_bug.cgi?id=1351955

openvas 16

prion 1

altlinux 5

debiancve 1

redhat 3

centos 2

nessus 24

ubuntu 1

f5 2

amazon 1

nvd 1

slackware 1

ibm 5

freebsd 1

cve 1

ubuntucve 1

samba 1

veracode 1

oraclelinux 2

fedora 2

cvelist 1

debian 2

osv 2

gentoo 1

openvas

RedHat Update for samba4 RHSA-2016:1487-01

2016-08-02 00:00:00

Fedora Update for samba FEDORA-2016-0acec022f4

2016-08-02 00:00:00

Fedora Update for samba FEDORA-2016-48b53757a9

2016-08-02 00:00:00

prion

Design/Logic Flaw

2016-07-07 15:59:00

altlinux

Security fix for the ALT Linux 8 package samba version 4.4.5-alt1

2016-07-10 00:00:00

Security fix for the ALT Linux 7 package samba version 4.4.5-alt1

2016-07-10 00:00:00

Security fix for the ALT Linux 10 package samba version 4.4.5-alt1

2016-07-08 00:00:00

debiancve

CVE-2016-2119

2016-07-07 15:59:00

redhat

(RHSA-2016:1486) Moderate: samba security and bug fix update

2016-07-26 05:06:35

(RHSA-2016:1487) Moderate: samba4 security update

2016-07-26 05:06:37

(RHSA-2016:1494) Moderate: samba security update

2016-07-26 11:44:33

centos

samba4 security update

2016-07-26 11:29:16

ctdb, libsmbclient, libwbclient, samba security update

2016-07-26 11:26:50

nessus

Oracle Linux 7 : samba (ELSA-2016-1486)

2016-07-27 00:00:00

SUSE SLES12 Security Update : samba (SUSE-SU-2016:2570-1)

2016-10-26 00:00:00

Amazon Linux AMI : samba (ALAS-2016-732)

2016-08-18 00:00:00

ubuntu

Samba vulnerability

2016-09-28 00:00:00

SOL13364192 - samba vulnerability CVE-2016-2119

2016-10-11 00:00:00

K13364192 : Samba vulnerability CVE-2016-2119

2016-10-11 00:00:00

amazon

Medium: samba

2016-08-17 13:30:00

nvd

CVE-2016-2119

2016-07-07 15:59:00

slackware

[slackware-security] samba

2016-07-07 19:54:48

ibm

Security Bulletin: Vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method (CVE-2016-2119)

2018-08-01 19:34:30

Security Bulletin: Samba vulnerability issue in IBM SONAS (CVE-2016-2119)

2018-06-18 00:28:10

Security Bulletin:Samba vulnerability issue on IBM Storwize V7000 Unified (CVE-2016-2119)

2018-06-18 00:28:09

freebsd

samba -- client side SMB2/3 required signing can be downgraded

2016-07-07 00:00:00

cve

CVE-2016-2119

2016-07-07 15:59:00

ubuntucve

CVE-2016-2119

2016-07-07 00:00:00

samba

Client side SMB2/3 required signing can be downgraded

2016-07-07 00:00:00

veracode

Man-in-the-Middle (MitM)

2019-01-15 09:12:19

oraclelinux

samba4 security update

2016-07-26 00:00:00

samba security and bug fix update

2016-07-26 00:00:00

fedora

[SECURITY] Fedora 23 Update: samba-4.3.11-1.fc23

2016-07-15 10:24:43

[SECURITY] Fedora 24 Update: samba-4.4.5-1.fc24

2016-07-12 15:10:30

cvelist

CVE-2016-2119

2016-07-07 15:00:00

debian

[SECURITY] [DSA 3740-1] samba security update

2016-12-19 10:16:48

[SECURITY] [DSA 3740-1] samba security update

2016-12-19 10:16:48

osv

samba - security update

2016-12-19 00:00:00

ctdb-4.5.0-1.1 on GA media

2024-06-15 00:00:00

gentoo

Samba: Multiple vulnerabilities

2018-05-22 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.005

Percentile

76.5%

JSON

Related for RH:CVE-2016-2119