Samba CVE-2017-12151 Man in the Middle Security Bypass Vulnerability

Bugtraq ID: 100917
Class: Design Error
CVE: CVE-2017-12151
Remote: Yes
Local: No
Published: Sep 20 2017 12:00AM
Updated: Sep 25 2017 09:00AM
Credit: Stefan Metzmacher
Vulnerable: Ubuntu Ubuntu Linux 16.04 LTS
Ubuntu Ubuntu Linux 14.04 LTS
Samba Samba 4.6.7
Samba Samba 4.6.6
Samba Samba 4.6.4
Samba Samba 4.6.1
Samba Samba 4.6
Samba Samba 4.5.13
Samba Samba 4.5.12
Samba Samba 4.5.10
Samba Samba 4.5.7
Samba Samba 4.5.6
Samba Samba 4.5.5
Samba Samba 4.5.4
Samba Samba 4.5.1
Samba Samba 4.5
Samba Samba 4.4.15
Samba Samba 4.4.14
Samba Samba 4.4.12
Samba Samba 4.4.11
Samba Samba 4.4.10
Samba Samba 4.4.9
Samba Samba 4.4.7
Samba Samba 4.4.6
Samba Samba 4.4.1
Samba Samba 4.4
Samba Samba 4.3.7
Samba Samba 4.3.5
Samba Samba 4.3.4
Samba Samba 4.3.3
Samba Samba 4.3.2
Samba Samba 4.3.1
Samba Samba 4.3
Samba Samba 4.2.10
Samba Samba 4.2.8
Samba Samba 4.2.7
Samba Samba 4.2.6
Samba Samba 4.2.5
Samba Samba 4.2.4
Samba Samba 4.2.3
Samba Samba 4.2.2
Samba Samba 4.2.1
Samba Samba 4.2
Samba Samba 4.1.22
Samba Samba 4.1.21
Samba Samba 4.1.20
Samba Samba 4.1.19
Samba Samba 4.1.18
Samba Samba 4.1.17
Samba Samba 4.1.16
Samba Samba 4.1.15
Samba Samba 4.1.14
Samba Samba 4.1.13
Samba Samba 4.1.10
Samba Samba 4.1.9
Samba Samba 4.1.7
Samba Samba 4.1.3
Samba Samba 4.1.2
Samba Samba 4.1.1
Samba Samba 4.1
Samba Samba 4.5.3
Samba Samba 4.5.2
Samba Samba 4.4.8
Samba Samba 4.4.5
Samba Samba 4.4.4
Samba Samba 4.4.3
Samba Samba 4.4.2
Samba Samba 4.3.9
Samba Samba 4.3.8
Samba Samba 4.3.6
+ Trustix Secure Linux 2.0
+ Trustix Secure Linux 1.5
Samba Samba 4.3.13
Samba Samba 4.3.11
Samba Samba 4.3.10
Samba Samba 4.2.9
+ Trustix Secure Linux 2.0
+ Trustix Secure Linux 1.5
Samba Samba 4.2.14
Samba Samba 4.2.13
Samba Samba 4.2.12
Samba Samba 4.2.11
Samba Samba 4.1.8
Samba Samba 4.1.6
Samba Samba 4.1.5
Samba Samba 4.1.23
+ Trustix Secure Linux 2.0
+ Trustix Secure Linux 1.5
Samba Samba 4.1.11
Redhat Gluster Storage 3.0
Redhat Enterprise Linux Workstation 7
Redhat Enterprise Linux Server for ARM 7
Redhat Enterprise Linux Server - TUS 7.4
Redhat Enterprise Linux Server - Extended Update Support 7.4
Redhat Enterprise Linux Server - AUS 7.4
Redhat Enterprise Linux Server - 4 Year Extended Update Support 7.4
Redhat Enterprise Linux Server (for IBM Power LE) - 4 Year Extended Update Support 7.4
Redhat Enterprise Linux Server 7
Redhat Enterprise Linux Resilient Storage (for RHEL Server) - Extended Update Support 7.4
Redhat Enterprise Linux Resilient Storage (for RHEL Server) 7
Redhat Enterprise Linux for Scientific Computing 7
Redhat Enterprise Linux for Power, big endian - Extended Update Support 7.4
Redhat Enterprise Linux for Power, big endian 7
Redhat Enterprise Linux for IBM z Systems - Extended Update Support 7.4
Redhat Enterprise Linux for IBM z Systems 7
Redhat Enterprise Linux EUS Compute Node 7.4
Redhat Enterprise Linux Desktop 7
Redhat Enterprise Linux Client Optional 7
Redhat Enterprise Linux 7 Client
Redhat Enterprise Linux 6
+ Trustix Secure Enterprise Linux 2.0
+ Trustix Secure Linux 2.2
+ Trustix Secure Linux 2.1
+ Trustix Secure Linux 2.0
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: Samba Samba 4.6.8
Samba Samba 4.5.14
Samba Samba 4.4.16


 

Privacy Statement
Copyright 2010, SecurityFocus