Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-10918

Опубликовано: 22 авг. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4
CVSS3: 5.2

Описание

A null pointer dereference flaw was found in the way samba checked database outputs from the LDB database layer. An authenticated attacker could use this flaw to crash a samba server in an Active Directory Domain Controller configuration. Samba versions before 4.7.9 and 4.8.4 are vulnerable.

РелизСтатусПримечание
bionic

released

2:4.7.6+dfsg~ubuntu-0ubuntu2.2
devel

released

2:4.8.4+dfsg-2ubuntu1
esm-infra-legacy/trusty

not-affected

2:4.3.11+dfsg-0ubuntu0.14.04.14
esm-infra/bionic

released

2:4.7.6+dfsg~ubuntu-0ubuntu2.2
esm-infra/xenial

not-affected

2:4.3.11+dfsg-0ubuntu0.16.04.13
precise/esm

not-affected

trusty

not-affected

2:4.3.11+dfsg-0ubuntu0.14.04.14
trusty/esm

not-affected

2:4.3.11+dfsg-0ubuntu0.14.04.14
upstream

released

4.7.9,4.8.4
xenial

not-affected

2:4.3.11+dfsg-0ubuntu0.16.04.13

Показывать по

Ссылки на источники

EPSS

Процентиль: 89%
0.04347
Низкий

4 Medium

CVSS2

5.2 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-10918

CVSS3: 5.2
redhat
больше 7 лет назад

A null pointer dereference flaw was found in the way samba checked database outputs from the LDB database layer. An authenticated attacker could use this flaw to crash a samba server in an Active Directory Domain Controller configuration. Samba versions before 4.7.9 and 4.8.4 are vulnerable.

nvd логотип

CVE-2018-10918

CVSS3: 5.2
nvd
больше 7 лет назад

A null pointer dereference flaw was found in the way samba checked database outputs from the LDB database layer. An authenticated attacker could use this flaw to crash a samba server in an Active Directory Domain Controller configuration. Samba versions before 4.7.9 and 4.8.4 are vulnerable.

debian логотип

CVE-2018-10918

CVSS3: 5.2
debian
больше 7 лет назад

A null pointer dereference flaw was found in the way samba checked dat ...

github логотип

GHSA-3gcv-q5vm-qrxr

CVSS3: 6.5
github
больше 3 лет назад

A null pointer dereference flaw was found in the way samba checked database outputs from the LDB database layer. An authenticated attacker could use this flaw to crash a samba server in an Active Directory Domain Controller configuration. Samba versions before 4.7.9 and 4.8.4 are vulnerable.

fstec логотип

BDU:2020-00691

CVSS3: 6.5
fstec
больше 7 лет назад

Уязвимость пакета программ для сетевого взаимодействия Samba, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 89%
0.04347
Низкий

4 Medium

CVSS2

5.2 Medium

CVSS3