CVE-2016-2124

Опубликовано: 18 фев. 2022

Источник: debian

EPSS Низкий

Описание

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.13.14+dfsg-1		package

Примечания

https://bugzilla.samba.org/show_bug.cgi?id=12444
https://www.samba.org/samba/security/CVE-2016-2124.html

EPSS

Процентиль: 68%

0.00571

Низкий

Связанные уязвимости

CVE-2016-2124

CVSS3: 5.9

ubuntu

больше 3 лет назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

CVE-2016-2124

CVSS3: 6.8

redhat

больше 3 лет назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

CVE-2016-2124

CVSS3: 5.9

nvd

больше 3 лет назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

CVE-2016-2124

CVSS3: 5.9

msrc

8 месяцев назад

Описание отсутствует

GHSA-p5c7-5xj7-x9vv

CVSS3: 5.9

github

больше 3 лет назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

EPSS

Процентиль: 68%

0.00571

Низкий