Vulnerability-Lookup

BDU:2018-00368

Vulnerability from fstec - Published: 13.03.2018

Title

Уязвимость сервера LDAP пакета программ сетевого взаимодействия Samba, позволяющая нарушителю изменять пароли других пользователей

Description

Уязвимость сервера LDAP пакета программ сетевого взаимодействия Samba, настроенного как контроллер домена Active Directory, связана с недостатками механизма авторизации. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, изменять пароли других пользователей

Severity ?


                    
                      AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Vendor

Samba Team, ООО «РусБИТех-Астра», АО «НТЦ ИТ РОСА»

Software Name

Samba, Astra Linux Common Edition (запись в едином реестре российских программ №4433), РОСА Кобальт (запись в едином реестре российских программ №1999), ROSA Fresh, РОСА RED

Software Version

4.0.0 (Samba), 4.0.1 (Samba), 4.0.10 (Samba), 4.0.11 (Samba), 4.0.12 (Samba), 4.0.13 (Samba), 4.0.14 (Samba), 4.0.15 (Samba), 4.0.16 (Samba), 4.0.17 (Samba), 4.0.18 (Samba), 4.0.19 (Samba), 4.0.2 (Samba), 4.0.20 (Samba), 4.0.21 (Samba), 4.0.22 (Samba), 4.0.23 (Samba), 4.0.24 (Samba), 4.0.3 (Samba), 4.0.4 (Samba), 4.0.5 (Samba), 4.0.6 (Samba), 4.0.7 (Samba), 4.0.8 (Samba), 4.0.9 (Samba), 4.1 (Samba), 4.1.1 (Samba), 4.1.10 (Samba), 4.1.11 (Samba), 4.1.12 (Samba), 4.1.13 (Samba), 4.1.14 (Samba), 4.1.15 (Samba), 4.1.16 (Samba), 4.1.17 (Samba), 4.1.18 (Samba), 4.1.19 (Samba), 4.1.2 (Samba), 4.1.20 (Samba), 4.1.21 (Samba), 4.1.22 (Samba), 4.1.23 (Samba), 4.1.3 (Samba), 4.1.5 (Samba), 4.1.6 (Samba), 4.1.7 (Samba), 4.1.8 (Samba), 4.1.9 (Samba), 4.2 (Samba), 4.2.0 Rc1 (Samba), 4.2.0 Rc2 (Samba), 4.2.0 Rc3 (Samba), 4.2.0 Rc4 (Samba), 4.2.1 (Samba), 4.2.10 (Samba), 4.2.11 (Samba), 4.2.12 (Samba), 4.2.13 (Samba), 4.2.14 (Samba), 4.2.2 (Samba), 4.2.3 (Samba), 4.2.4 (Samba), 4.2.5 (Samba), 4.2.6 (Samba), 4.2.7 (Samba), 4.2.8 (Samba), 4.2.9 (Samba), 4.2rc4 (Samba), 4.3 (Samba), 4.3.1 (Samba), 4.3.10 (Samba), 4.3.11 (Samba), 4.3.13 (Samba), 4.3.2 (Samba), 4.3.3 (Samba), 4.3.4 (Samba), 4.3.5 (Samba), 4.3.6 (Samba), 4.3.7 (Samba), 4.3.8 (Samba), 4.3.9 (Samba), 4.4 (Samba), 4.4 rc3 (Samba), 4.4 rc4 (Samba), 4.4.0 Rc2 (Samba), 4.4.1 (Samba), 4.4.10 (Samba), 4.4.11 (Samba), 4.4.12 (Samba), 4.4.14 (Samba), 4.4.15 (Samba), 4.4.16 (Samba), 4.4.2 (Samba), 4.4.3 (Samba), 4.4.4 (Samba), 4.4.5 (Samba), 4.4.6 (Samba), 4.4.7 (Samba), 4.4.8 (Samba), 4.4.9 (Samba), 4.5 (Samba), 4.5.1 (Samba), 4.5.10 (Samba), 4.5.12 (Samba), 4.5.13 (Samba), 4.5.14 (Samba), 4.5.15 (Samba), 4.5.2 (Samba), 4.5.3 (Samba), 4.5.4 (Samba), 4.5.5 (Samba), 4.5.6 (Samba), 4.5.7 (Samba), 4.6 (Samba), 4.6.1 (Samba), 4.6.11 (Samba), 4.6.4 (Samba), 4.6.6 (Samba), 4.6.7 (Samba), 4.6.8 (Samba), 4.7.3 (Samba), 2.12 «Орёл» (Astra Linux Common Edition), - (РОСА Кобальт), - (ROSA Fresh), - (РОСА RED)

Possible Mitigations

Использование рекомендаций: Для Samba: https://www.samba.org/samba/security/CVE-2018-1057.html Для Astra Linux: Обновление программного обеспечения (пакета samba) до 2:4.5.12+dfsg-2+deb9u1 или более поздней версии Для ОС РОСА КОБАЛЬТ: http://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.003 http://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-03-17.001

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=1553553 https://www.samba.org/samba/security/CVE-2018-1057.html https://access.redhat.com/security/cve/cve-2018-1057 http://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.003 http://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-03-17.001

CWE

CWE-863

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
  "CVSS 3.0": "AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Samba Team, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "4.0.0 (Samba), 4.0.1 (Samba), 4.0.10 (Samba), 4.0.11 (Samba), 4.0.12 (Samba), 4.0.13 (Samba), 4.0.14 (Samba), 4.0.15 (Samba), 4.0.16 (Samba), 4.0.17 (Samba), 4.0.18 (Samba), 4.0.19 (Samba), 4.0.2 (Samba), 4.0.20 (Samba), 4.0.21 (Samba), 4.0.22 (Samba), 4.0.23 (Samba), 4.0.24 (Samba), 4.0.3 (Samba), 4.0.4 (Samba), 4.0.5 (Samba), 4.0.6 (Samba), 4.0.7 (Samba), 4.0.8 (Samba), 4.0.9 (Samba), 4.1 (Samba), 4.1.1 (Samba), 4.1.10 (Samba), 4.1.11 (Samba), 4.1.12 (Samba), 4.1.13 (Samba), 4.1.14 (Samba), 4.1.15 (Samba), 4.1.16 (Samba), 4.1.17 (Samba), 4.1.18 (Samba), 4.1.19 (Samba), 4.1.2 (Samba), 4.1.20 (Samba), 4.1.21 (Samba), 4.1.22 (Samba), 4.1.23 (Samba), 4.1.3 (Samba), 4.1.5 (Samba), 4.1.6 (Samba), 4.1.7 (Samba), 4.1.8 (Samba), 4.1.9 (Samba), 4.2 (Samba), 4.2.0 Rc1 (Samba), 4.2.0 Rc2 (Samba), 4.2.0 Rc3 (Samba), 4.2.0 Rc4 (Samba), 4.2.1 (Samba), 4.2.10 (Samba), 4.2.11 (Samba), 4.2.12 (Samba), 4.2.13 (Samba), 4.2.14 (Samba), 4.2.2 (Samba), 4.2.3 (Samba), 4.2.4 (Samba), 4.2.5 (Samba), 4.2.6 (Samba), 4.2.7 (Samba), 4.2.8 (Samba), 4.2.9 (Samba), 4.2rc4 (Samba), 4.3 (Samba), 4.3.1 (Samba), 4.3.10 (Samba), 4.3.11 (Samba), 4.3.13 (Samba), 4.3.2 (Samba), 4.3.3 (Samba), 4.3.4 (Samba), 4.3.5 (Samba), 4.3.6 (Samba), 4.3.7 (Samba), 4.3.8 (Samba), 4.3.9 (Samba), 4.4 (Samba), 4.4 rc3 (Samba), 4.4 rc4 (Samba), 4.4.0 Rc2 (Samba), 4.4.1 (Samba), 4.4.10 (Samba), 4.4.11 (Samba), 4.4.12 (Samba), 4.4.14 (Samba), 4.4.15 (Samba), 4.4.16 (Samba), 4.4.2 (Samba), 4.4.3 (Samba), 4.4.4 (Samba), 4.4.5 (Samba), 4.4.6 (Samba), 4.4.7 (Samba), 4.4.8 (Samba), 4.4.9 (Samba), 4.5 (Samba), 4.5.1 (Samba), 4.5.10 (Samba), 4.5.12 (Samba), 4.5.13 (Samba), 4.5.14 (Samba), 4.5.15 (Samba), 4.5.2 (Samba), 4.5.3 (Samba), 4.5.4 (Samba), 4.5.5 (Samba), 4.5.6 (Samba), 4.5.7 (Samba), 4.6 (Samba), 4.6.1 (Samba), 4.6.11 (Samba), 4.6.4 (Samba), 4.6.6 (Samba), 4.6.7 (Samba), 4.6.8 (Samba), 4.7.3 (Samba), 2.12 \u00ab\u041e\u0440\u0451\u043b\u00bb (Astra Linux Common Edition), - (\u0420\u041e\u0421\u0410 \u041a\u043e\u0431\u0430\u043b\u044c\u0442), - (ROSA Fresh), - (\u0420\u041e\u0421\u0410 RED)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Samba:\n\nhttps://www.samba.org/samba/security/CVE-2018-1057.html\n\n\u0414\u043b\u044f Astra Linux:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f (\u043f\u0430\u043a\u0435\u0442\u0430 samba) \u0434\u043e 2:4.5.12+dfsg-2+deb9u1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438\n\n\u0414\u043b\u044f \u041e\u0421 \u0420\u041e\u0421\u0410 \u041a\u041e\u0411\u0410\u041b\u042c\u0422:\nhttp://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.003\nhttp://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-03-17.001",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.03.2018",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.08.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "16.03.2018",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2018-00368",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2018-1057",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Samba, Astra Linux Common Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164433), \u0420\u041e\u0421\u0410 \u041a\u043e\u0431\u0430\u043b\u044c\u0442 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161999), ROSA Fresh, \u0420\u041e\u0421\u0410 RED",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Common Edition 2.12 \u00ab\u041e\u0440\u0451\u043b\u00bb  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164433), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb \u0420\u041e\u0421\u0410 \u041a\u043e\u0431\u0430\u043b\u044c\u0442 -  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161999), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Fresh - , \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb \u0420\u041e\u0421\u0410 RED - ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u0430 LDAP \u043f\u0430\u043a\u0435\u0442\u0430 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f Samba, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0438\u0437\u043c\u0435\u043d\u044f\u0442\u044c \u043f\u0430\u0440\u043e\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u044f (CWE-863)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u0430 LDAP \u043f\u0430\u043a\u0435\u0442\u0430 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f Samba, \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043d\u043e\u0433\u043e \u043a\u0430\u043a \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440 \u0434\u043e\u043c\u0435\u043d\u0430 Active Directory, \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0430 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0438\u0437\u043c\u0435\u043d\u044f\u0442\u044c \u043f\u0430\u0440\u043e\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://bugzilla.redhat.com/show_bug.cgi?id=1553553\nhttps://www.samba.org/samba/security/CVE-2018-1057.html \nhttps://access.redhat.com/security/cve/cve-2018-1057\nhttp://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.003\nhttp://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-03-17.001",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-863",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,4)"
}

CVE-2018-1057 (GCVE-0-2018-1057)

Vulnerability from cvelistv5 – Published: 2018-03-13 16:00 – Updated: 2024-08-05 03:44

Summary

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Domain Controllers).

Severity ?

No CVSS data available.

CWE

CWE-863

Assigner

redhat

References

URL

Tags

	http://www.securityfocus.com/bid/103382	vdb-entryx_refsource_BID
	https://www.debian.org/security/2018/dsa-4135	vendor-advisoryx_refsource_DEBIAN
	https://usn.ubuntu.com/3595-1/	vendor-advisoryx_refsource_UBUNTU
	http://www.securitytracker.com/id/1040494	vdb-entryx_refsource_SECTRACK
	https://security.gentoo.org/glsa/201805-07	vendor-advisoryx_refsource_GENTOO
	https://security.netapp.com/advisory/ntap-2018031…	x_refsource_CONFIRM
	https://www.samba.org/samba/security/CVE-2018-1057.html	x_refsource_CONFIRM
	https://bugzilla.redhat.com/show_bug.cgi?id=1553553	x_refsource_CONFIRM
	https://www.synology.com/support/security/Synolog…	x_refsource_CONFIRM
	https://lists.debian.org/debian-lts-announce/2019…	mailing-listx_refsource_MLIST

Impacted products

	Vendor	Product	Version
	Samba	Samba	Affected: All versions of Samba from 4.0.0 onwards.

Date Public ?

2018-03-13 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:44:11.979Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "103382",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/103382"
          },
          {
            "name": "DSA-4135",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4135"
          },
          {
            "name": "USN-3595-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3595-1/"
          },
          {
            "name": "1040494",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040494"
          },
          {
            "name": "GLSA-201805-07",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-07"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20180313-0001/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2018-1057.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553553"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.synology.com/support/security/Synology_SA_18_08"
          },
          {
            "name": "[debian-lts-announce] 20190409 [SECURITY] [DLA 1754-1] samba security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Samba",
          "vendor": "Samba",
          "versions": [
            {
              "status": "affected",
              "version": "All versions of Samba from 4.0.0 onwards."
            }
          ]
        }
      ],
      "datePublic": "2018-03-13T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users\u0027 passwords, including administrative users and privileged service accounts (eg Domain Controllers)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-09T22:06:02.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "103382",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/103382"
        },
        {
          "name": "DSA-4135",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4135"
        },
        {
          "name": "USN-3595-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3595-1/"
        },
        {
          "name": "1040494",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040494"
        },
        {
          "name": "GLSA-201805-07",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-07"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20180313-0001/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.samba.org/samba/security/CVE-2018-1057.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553553"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.synology.com/support/security/Synology_SA_18_08"
        },
        {
          "name": "[debian-lts-announce] 20190409 [SECURITY] [DLA 1754-1] samba security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-1057",
    "datePublished": "2018-03-13T16:00:00.000Z",
    "dateReserved": "2017-12-04T00:00:00.000Z",
    "dateUpdated": "2024-08-05T03:44:11.979Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2018-00368

CVE-2018-1057 (GCVE-0-2018-1057)

Tags

Sightings

Nomenclature