Уязвимость CVE-2016-2113

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.3.7+dfsg-1		package
samba	not-affected		wheezy	package

CVE-2016-2113

CVSS3: 7.4

ubuntu

больше 9 лет назад

Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate.

CVE-2016-2113

redhat

больше 9 лет назад

Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate.

CVE-2016-2113

CVSS3: 7.4

nvd

больше 9 лет назад

Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate.

GHSA-j9wg-qqgj-ph9r

CVSS3: 7.4

github

больше 3 лет назад

Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate.

BDU:2021-01290

CVSS3: 7.4

fstec

больше 9 лет назад

Уязвимость пакета программ сетевого взаимодействия Samba, связанная с недостатками в механизме криптографической защиты, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность

exploitDog

CVE-2016-2113

Описание

Пакеты

Примечания

Связанные уязвимости