Test ID:	1.3.6.1.4.1.25623.1.0.150733
Category:	General
Title:	Samba 4.0.0 <= 4.0.10, 4.1.0 Information Disclosure Vulnerability (CVE-2013-4476)
Summary:	Samba is prone to an information disclosure vulnerability.
Description:	Summary: Samba is prone to an information disclosure vulnerability. Vulnerability Insight: In setups which provide ldap(s) and/or https services, the private key for SSL/TLS encryption might be world readable. This typically happens in active directory domain controller setups. Due to incorrect directory and file permissions a local attacker might obtain the private key that is used for the SSL/TLS encryption for ldaps (including STARTTLS on ldap) and https network traffic. The attacker is then able to decrypt encrypted network traffic which may contain confidential information like passwords. Note that the http(s) service is not started by default, only if the 'server services' option contains 'web'. The ldap(s) service is only started if Samba is configured as an active directory domain controller. Affected Software/OS: Samba versions 4.0.0 through 4.0.10 and 4.1.0. Solution: Update to version 4.0.11, 4.1.1 or later. CVSS Score: 1.2 CVSS Vector: AV:L/AC:H/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4476 http://security.gentoo.org/glsa/glsa-201502-15.xml SuSE Security Announcement: openSUSE-SU-2013:1742 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-11/msg00083.html SuSE Security Announcement: openSUSE-SU-2013:1921 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00088.html
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.