Lucene search
Veracode Vulnerability DatabaseVERACODE:12729HistoryJan 15, 2019 - 9:21 a.m.
Man-in-the-Middle (MitM)
2019-01-1509:21:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
EPSS
0.002
Percentile
53.6%
samba is vulnerable to man-in-the-middle (MitM) attacks. The vulnerability exists as it was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enforce “SMB signing” when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text.
References
www.securityfocus.com/bid/101554
access.redhat.com/errata/RHSA-2017:2858
access.redhat.com/errata/RHSA-2017:3110
access.redhat.com/security/cve/CVE-2017-15085
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1505787
bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-15085
Related
ubuntucve
ubuntucve
CVE-2017-15085
2017-11-08 00:00:00
cve
cve
CVE-2017-15085
2017-11-08 19:29:00
debiancve
debiancve
CVE-2017-15085
2017-11-08 19:29:00
cvelist
cvelist
CVE-2017-15085
2017-11-08 19:00:00
prion
prion
Code injection
2017-11-08 19:29:00
nvd
nvd
CVE-2017-15085
2017-11-08 19:29:00
redhatcve
redhatcve
CVE-2017-15085
2017-10-24 11:19:43
nessus
nessus
RHEL 6 : samba (RHSA-2017:3110)
2017-11-08 00:00:00
redhat
redhat
(RHSA-2017:3110) Moderate: samba security update
2017-11-02 14:41:48
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in Samba affect IBM i
2019-12-18 14:26:38