#VU240 Man-in-the-middle attack in Samba - CVE-2016-2115
Published: July 29, 2016 / Updated: November 22, 2018
Vulnerability identifier: #VU240
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2016-2115
CWE-ID: CWE-300
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Samba
Samba
Software vendor:
Samba
Samba
Description
The vulnerability allows a remote attacker to to bypass security restrictions.
The vulnerability exists due to the failure to protect the integrity of SMB client connections for IPC traffic. A remote unauthenticated attacker can bypass security restrictions by using man-in-the-middle techniques to perform unauthorized actions.
Successful exploitation of this vulnerability may result in security restrictions bypass.
The vulnerability exists due to the failure to protect the integrity of SMB client connections for IPC traffic. A remote unauthenticated attacker can bypass security restrictions by using man-in-the-middle techniques to perform unauthorized actions.
Successful exploitation of this vulnerability may result in security restrictions bypass.
Remediation
Install Samba 4.4.2, 4.3.8 and 4.2.11.