- Home
- CVEs with nessus.description==samba was updated to fix seven security issues.
These security issues were fixed :
- CVE-2015-5370: DCERPC server and client were vulnerable
to DOS and MITM attacks (bsc#936862).
- CVE-2016-2110: A man-in-the-middle could have downgraded
NTLMSSP authentication (bsc#973031).
- CVE-2016-2111: Domain controller netlogon member
computer could have been spoofed (bsc#973032).
- CVE-2016-2112: LDAP conenctions were vulnerable to
downgrade and MITM attack (bsc#973033).
- CVE-2016-2113: TLS certificate validation were missing
(bsc#973034).
- CVE-2016-2115: Named pipe IPC were vulnerable to MITM
attacks (bsc#973036).
- CVE-2016-2118: 'Badlock' DCERPC impersonation of
authenticated account were possible (bsc#971965).
The update package also includes non-security fixes. See advisory for
details.
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top