FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

samba -- Orpheus Lyre mutual authentication validation bypass

Affected packages
samba42 < 4.2.15
samba43 < 4.3.14
samba44 < 4.4.15
samba45 < 4.5.12
samba46 < 4.6.6

Details

VuXML ID 85851e4f-67d9-11e7-bc37-00505689d4ae
Discovery 2017-07-12
Entry 2017-07-12

The samba project reports:

A MITM attacker may impersonate a trusted server and thus gain elevated access to the domain by returning malicious replication or authorization data.

[source]

References

CVE Name CVE-2017-11103
URL https://www.samba.org/samba/security/CVE-2017-11103.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.