FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

samba -- Unauthenticated domain takeover via netlogon

Affected packages
samba410 < 4.10.18
samba411 < 4.11.13
samba412 < 4.12.7

Details

VuXML ID 24ace516-fad7-11ea-8d8c-005056a311d1
Discovery 2020-01-01
Entry 2020-09-20

The Samba Team reports:

An unauthenticated attacker on the network can gain administrator access by exploiting a netlogon protocol flaw.

References

CVE Name CVE-2020-1472
URL https://www.samba.org/samba/security/CVE-2020-1472.html