Количество 16
Количество 16
CVE-2016-2110
The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security.
CVE-2016-2110
The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security.
CVE-2016-2110
The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security.
CVE-2016-2110
The NTLMSSP authentication implementation in Samba 3.x and 4.x before ...
SUSE-RU-2016:1479-1
Recommended update for samba
SUSE-RU-2016:1478-1
Recommended update for samba
GHSA-59r3-hh3x-g9v9
The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security.
BDU:2021-01294
Уязвимость реализации NTLMSSP пакета программ сетевого взаимодействия Samba, связанная с недостатках элементов безопасности, позволяющая нарушителю оказать воздействие на целостность данных
ELSA-2016-0621
ELSA-2016-0621: samba security update (IMPORTANT)
ELSA-2016-0613
ELSA-2016-0613: samba3x security update (CRITICAL)
openSUSE-SU-2016:1025-1
Security update for samba
SUSE-SU-2016:1028-1
Security update for samba
SUSE-SU-2016:1024-1
Security update for samba
SUSE-SU-2016:1023-1
Security update for samba
SUSE-SU-2016:1022-1
Security update for samba
ELSA-2016-0612
ELSA-2016-0612: samba and samba4 security, bug fix, and enhancement update (CRITICAL)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-2110 The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. | CVSS3: 5.9 | 17% Средний | больше 9 лет назад |
 | CVE-2016-2110 The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. | CVSS2: 4.3 | 17% Средний | больше 9 лет назад |
 | CVE-2016-2110 The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. | CVSS3: 5.9 | 17% Средний | больше 9 лет назад |
| CVE-2016-2110 The NTLMSSP authentication implementation in Samba 3.x and 4.x before ... | CVSS3: 5.9 | 17% Средний | больше 9 лет назад |
 | SUSE-RU-2016:1479-1 Recommended update for samba | 17% Средний | больше 9 лет назад | |
| SUSE-RU-2016:1478-1 Recommended update for samba | 17% Средний | больше 9 лет назад | |
| GHSA-59r3-hh3x-g9v9 The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. | CVSS3: 5.9 | 17% Средний | больше 3 лет назад |
 | BDU:2021-01294 Уязвимость реализации NTLMSSP пакета программ сетевого взаимодействия Samba, связанная с недостатках элементов безопасности, позволяющая нарушителю оказать воздействие на целостность данных | CVSS3: 5.9 | 17% Средний | больше 9 лет назад |
| ELSA-2016-0621 ELSA-2016-0621: samba security update (IMPORTANT) | больше 9 лет назад | ||
| ELSA-2016-0613 ELSA-2016-0613: samba3x security update (CRITICAL) | больше 9 лет назад | ||
| openSUSE-SU-2016:1025-1 Security update for samba | больше 9 лет назад | ||
| SUSE-SU-2016:1028-1 Security update for samba | больше 9 лет назад | ||
| SUSE-SU-2016:1024-1 Security update for samba | больше 9 лет назад | ||
| SUSE-SU-2016:1023-1 Security update for samba | больше 9 лет назад | ||
| SUSE-SU-2016:1022-1 Security update for samba | больше 9 лет назад | ||
| ELSA-2016-0612 ELSA-2016-0612: samba and samba4 security, bug fix, and enhancement update (CRITICAL) | больше 9 лет назад |
Уязвимостей на страницу