CVE-2016-2124

Опубликовано: 18 фев. 2022

Источник: debian

EPSS Низкий

Описание

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
samba	fixed	2:4.13.14+dfsg-1		package

Примечания

https://bugzilla.samba.org/show_bug.cgi?id=12444
https://www.samba.org/samba/security/CVE-2016-2124.html

EPSS

Процентиль: 75%

0.00857

Низкий

Связанные уязвимости

CVE-2016-2124

CVSS3: 5.9

ubuntu

почти 4 года назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

CVE-2016-2124

CVSS3: 6.8

redhat

около 4 лет назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

CVE-2016-2124

CVSS3: 5.9

nvd

почти 4 года назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

CVE-2016-2124

CVSS3: 5.9

msrc

больше 1 года назад

Описание отсутствует

GHSA-p5c7-5xj7-x9vv

CVSS3: 5.9

github

почти 4 года назад

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

EPSS

Процентиль: 75%

0.00857

Низкий