Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CERTA-2011-AVI-416
Vulnerability from certfr_avis
La console d'administration web de Samba est vulnérable à des injections de code indirectes et à des injections de requêtes illégitimes par rebond.
Description
Deux vulnérabilités ont été corrigées dans la console d'administration web de Samba (SWAT) :
- (CVE-2011-2522) une injection de requêtes illégitimes par rebond (CRSF) est possible au moyen d'une URL spécialement construite ;
- (CVE-2011-2694) une injection de code indirecte est possible dans le module de changement de mots de passe.
La console SWAT n'est pas activée dans la configuration par défaut.
Solution
La version 3.5.10 de Samba remédie à ces problèmes.
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Samba Web Administration Tool (SWAT) dans les versions 3.x.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eSamba Web Administration Tool (SWAT) dans les versions 3.x.\u003c/p\u003e",
"content": "## Description\n\nDeux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans la console d\u0027administration\nweb de Samba (SWAT)\u00a0:\n\n- (CVE-2011-2522) une injection de requ\u00eates ill\u00e9gitimes par rebond\n (CRSF) est possible au moyen d\u0027une URL sp\u00e9cialement construite\u00a0;\n- (CVE-2011-2694) une injection de code indirecte est possible dans le\n module de changement de mots de passe.\n\n \n \n\nLa console SWAT n\u0027est pas activ\u00e9e dans la configuration par d\u00e9faut.\n\n## Solution\n\nLa version 3.5.10 de Samba rem\u00e9die \u00e0 ces probl\u00e8mes.\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-2694",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2694"
},
{
"name": "CVE-2011-2522",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2522"
}
],
"initial_release_date": "2011-07-28T00:00:00",
"last_revision_date": "2011-08-23T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 2290 du 07 ao\u00fbt 2011 :",
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDVSA-2011:121 du 27 juillet 2011 :",
"url": "http://www.mandriva.com/fr/support/security/advisories?name=MDVSA-2011:121"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-1182-1 du 02 ao\u00fbt 2011 :",
"url": "http://www.ubuntu.com/usn/usn-1182-1"
}
],
"reference": "CERTA-2011-AVI-416",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-07-28T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences aux bulletins Debian, Mandriva et Ubuntu.",
"revision_date": "2011-08-23T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance"
}
],
"summary": "La console d\u0027administration web de Samba est vuln\u00e9rable \u00e0 des injections\nde code indirectes et \u00e0 des injections de requ\u00eates ill\u00e9gitimes par\nrebond.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans Samba (SWAT)",
"vendor_advisories": [
{
"published_at": null,
"title": "Annonce de la version 3.5.10 de Samba du 26 juillet 2011",
"url": "http://www.samba.org/samba/history/samba-3.5.10.html"
}
]
}
CVE-2011-2694 (GCVE-0-2011-2694)
Vulnerability from cvelistv5
Published
2011-07-29 20:00
Modified
2024-08-06 23:08
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page).
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T23:08:23.785Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "MDVSA-2011:121",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"
},
{
"name": "HPSBNS02701",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "1025852",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1025852"
},
{
"name": "JVN#63041502",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN63041502/index.html"
},
{
"name": "DSA-2290",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"name": "74072",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/74072"
},
{
"name": "45393",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45393"
},
{
"name": "45496",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45496"
},
{
"name": "45488",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45488"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://samba.org/samba/history/samba-3.5.10.html"
},
{
"name": "48901",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/48901"
},
{
"name": "SSRT100598",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.samba.org/show_bug.cgi?id=8289"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.samba.org/samba/security/CVE-2011-2694"
},
{
"name": "USN-1182-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://ubuntu.com/usn/usn-1182-1"
},
{
"name": "samba-user-xss(68844)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68844"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=722537"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-07-26T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page)."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "MDVSA-2011:121",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"
},
{
"name": "HPSBNS02701",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "1025852",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1025852"
},
{
"name": "JVN#63041502",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN63041502/index.html"
},
{
"name": "DSA-2290",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"name": "74072",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/74072"
},
{
"name": "45393",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45393"
},
{
"name": "45496",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45496"
},
{
"name": "45488",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45488"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://samba.org/samba/history/samba-3.5.10.html"
},
{
"name": "48901",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/48901"
},
{
"name": "SSRT100598",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.samba.org/show_bug.cgi?id=8289"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.samba.org/samba/security/CVE-2011-2694"
},
{
"name": "USN-1182-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://ubuntu.com/usn/usn-1182-1"
},
{
"name": "samba-user-xss(68844)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68844"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=722537"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2011-2694",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "MDVSA-2011:121",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"
},
{
"name": "HPSBNS02701",
"refsource": "HP",
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "1025852",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1025852"
},
{
"name": "JVN#63041502",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN63041502/index.html"
},
{
"name": "DSA-2290",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"name": "74072",
"refsource": "OSVDB",
"url": "http://osvdb.org/74072"
},
{
"name": "45393",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45393"
},
{
"name": "45496",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45496"
},
{
"name": "45488",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45488"
},
{
"name": "http://samba.org/samba/history/samba-3.5.10.html",
"refsource": "CONFIRM",
"url": "http://samba.org/samba/history/samba-3.5.10.html"
},
{
"name": "48901",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/48901"
},
{
"name": "SSRT100598",
"refsource": "HP",
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "https://bugzilla.samba.org/show_bug.cgi?id=8289",
"refsource": "CONFIRM",
"url": "https://bugzilla.samba.org/show_bug.cgi?id=8289"
},
{
"name": "http://www.samba.org/samba/security/CVE-2011-2694",
"refsource": "CONFIRM",
"url": "http://www.samba.org/samba/security/CVE-2011-2694"
},
{
"name": "USN-1182-1",
"refsource": "UBUNTU",
"url": "http://ubuntu.com/usn/usn-1182-1"
},
{
"name": "samba-user-xss(68844)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68844"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=722537",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=722537"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2011-2694",
"datePublished": "2011-07-29T20:00:00",
"dateReserved": "2011-07-11T00:00:00",
"dateUpdated": "2024-08-06T23:08:23.785Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2011-2522 (GCVE-0-2011-2522)
Vulnerability from cvelistv5
Published
2011-07-29 20:00
Modified
2024-08-06 23:00
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program.
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T23:00:34.288Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "MDVSA-2011:121",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"
},
{
"name": "74071",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/74071"
},
{
"name": "HPSBNS02701",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "SSRT100664",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133527864025056\u0026w=2"
},
{
"name": "HPSBUX02768",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133527864025056\u0026w=2"
},
{
"name": "1025852",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1025852"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"
},
{
"name": "DSA-2290",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.samba.org/samba/security/CVE-2011-2522"
},
{
"name": "45393",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45393"
},
{
"name": "45496",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45496"
},
{
"name": "45488",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45488"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://samba.org/samba/history/samba-3.5.10.html"
},
{
"name": "SSRT100598",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "17577",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "http://www.exploit-db.com/exploits/17577"
},
{
"name": "8317",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/8317"
},
{
"name": "JVN#29529126",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN29529126/index.html"
},
{
"name": "USN-1182-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://ubuntu.com/usn/usn-1182-1"
},
{
"name": "48899",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/48899"
},
{
"name": "samba-swat-csrf(68843)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-07-26T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-12T17:57:02",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "MDVSA-2011:121",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"
},
{
"name": "74071",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/74071"
},
{
"name": "HPSBNS02701",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "SSRT100664",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133527864025056\u0026w=2"
},
{
"name": "HPSBUX02768",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133527864025056\u0026w=2"
},
{
"name": "1025852",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1025852"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"
},
{
"name": "DSA-2290",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.samba.org/samba/security/CVE-2011-2522"
},
{
"name": "45393",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45393"
},
{
"name": "45496",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45496"
},
{
"name": "45488",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45488"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://samba.org/samba/history/samba-3.5.10.html"
},
{
"name": "SSRT100598",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "17577",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "http://www.exploit-db.com/exploits/17577"
},
{
"name": "8317",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/8317"
},
{
"name": "JVN#29529126",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN29529126/index.html"
},
{
"name": "USN-1182-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://ubuntu.com/usn/usn-1182-1"
},
{
"name": "48899",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/48899"
},
{
"name": "samba-swat-csrf(68843)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2011-2522",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "MDVSA-2011:121",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"
},
{
"name": "74071",
"refsource": "OSVDB",
"url": "http://osvdb.org/74071"
},
{
"name": "HPSBNS02701",
"refsource": "HP",
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "SSRT100664",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133527864025056\u0026w=2"
},
{
"name": "HPSBUX02768",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133527864025056\u0026w=2"
},
{
"name": "1025852",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1025852"
},
{
"name": "https://bugzilla.samba.org/show_bug.cgi?id=8290",
"refsource": "CONFIRM",
"url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"
},
{
"name": "DSA-2290",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2011/dsa-2290"
},
{
"name": "http://www.samba.org/samba/security/CVE-2011-2522",
"refsource": "CONFIRM",
"url": "http://www.samba.org/samba/security/CVE-2011-2522"
},
{
"name": "45393",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45393"
},
{
"name": "45496",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45496"
},
{
"name": "45488",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45488"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=721348",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"
},
{
"name": "http://samba.org/samba/history/samba-3.5.10.html",
"refsource": "CONFIRM",
"url": "http://samba.org/samba/history/samba-3.5.10.html"
},
{
"name": "SSRT100598",
"refsource": "HP",
"url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"
},
{
"name": "17577",
"refsource": "EXPLOIT-DB",
"url": "http://www.exploit-db.com/exploits/17577"
},
{
"name": "8317",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/8317"
},
{
"name": "JVN#29529126",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN29529126/index.html"
},
{
"name": "USN-1182-1",
"refsource": "UBUNTU",
"url": "http://ubuntu.com/usn/usn-1182-1"
},
{
"name": "48899",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/48899"
},
{
"name": "samba-swat-csrf(68843)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2011-2522",
"datePublished": "2011-07-29T20:00:00",
"dateReserved": "2011-06-15T00:00:00",
"dateUpdated": "2024-08-06T23:00:34.288Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…