What Are You Looking For?

Sign Up
Arch Linux Security Advisory ASA-202009-17
=========================================
Severity: Medium
Date    : 2020-09-29
CVE-ID  : CVE-2020-1472
Package : samba
Type    : access restriction bypass
Remote  : Yes
Link    : https://security.archlinux.org/AVG-1236

Summary
======
The package samba before version 4.13.0-1 is vulnerable to access
restriction bypass.

Resolution
=========
Upgrade to 4.13.0-1.

# pacman -Syu "samba>=4.13.0-1"

The problem has been fixed upstream in version 4.13.0.

Workaround
=========
Ensure you do not have an schannel directive and if you do make sure
it's either = yes or = auto.

Description
==========
A flaw was found in the Microsoft Windows Netlogon Remote Protocol (MS-
NRPC), where it reuses a known, static, zero-value initialization
vector (IV) in AES-CFB8 mode. This flaw allows an unauthenticated
attacker to impersonate a domain-joined computer, including a domain
controller, and possibly obtain domain administrator privileges. The
highest threat from this vulnerability is to confidentiality,
integrity, as well as system availability.

Impact
=====
An unauthenticated attacker can gain administrator access through
crafted traffic, if the samba server is configured to run with a
vulnerable schannel directive.

References
=========
https://bugs.archlinux.org/task/67983
https://www.samba.org/samba/security/CVE-2020-1472.html
https://security.archlinux.org/CVE-2020-1472

ArchLinux: 202009-17: samba: access restriction bypass

October 6, 2020

Summary

A flaw was found in the Microsoft Windows Netlogon Remote Protocol (MS- NRPC), where it reuses a known, static, zero-value initialization vector (IV) in AES-CFB8 mode. This flaw allows an unauthenticated attacker to impersonate a domain-joined computer, including a domain controller, and possibly obtain domain administrator privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Resolution

Upgrade to 4.13.0-1. # pacman -Syu "samba>=4.13.0-1"
The problem has been fixed upstream in version 4.13.0.

References

https://bugs.archlinux.org/task/67983 https://www.samba.org/samba/security/CVE-2020-1472.html https://security.archlinux.org/CVE-2020-1472

Severity
Package : samba
Type : access restriction bypass
Remote : Yes
Link : https://security.archlinux.org/AVG-1236

Workaround

Ensure you do not have an schannel directive and if you do make sureit's either = yes or = auto.

Related News

Linux version of Qilin ransomware focuses on VMware ESXi

Dec 4, 2023

OpenSSL 3.2 Adds Support for TCP Fast Open on Linux, Argon2 KDF, and More

Nov 27, 2023

Tails 5.20 Brings Latest Tor Browser, Ditches AdGuard Filter List

Nov 29, 2023

How Meta Patches Linux at Hyperscale

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo