Описание
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2:4.1.3+dfsg-2ubuntu4 |
| esm-infra-legacy/trusty | not-affected | 2:4.1.3+dfsg-2ubuntu4 |
| esm-infra/xenial | not-affected | 2:4.1.3+dfsg-2ubuntu4 |
| lucid | released | 2:3.4.7~dfsg-1ubuntu3.14 |
| precise | released | 2:3.6.3-2ubuntu2.10 |
| precise/esm | not-affected | 2:3.6.3-2ubuntu2.10 |
| quantal | released | 2:3.6.6-3ubuntu5.4 |
| saucy | released | 2:3.6.18-1ubuntu3.2 |
| trusty | released | 2:4.1.3+dfsg-2ubuntu4 |
| trusty/esm | not-affected | 2:4.1.3+dfsg-2ubuntu4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| quantal | ignored | end of life |
| saucy | ignored | end of life |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 4.0.16, 4.1.6 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 d ...
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Уязвимость операционной системы SUSE Linux Enterprise, позволяющая злоумышленнику нарушить конфиденциальность защищаемой информации
EPSS
5 Medium
CVSS2