Vulnerability   
Search   
    Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.844634
Category:Ubuntu Local Security Checks
Title:Ubuntu: Security Advisory for samba (USN-4559-1)
Summary:The remote host is missing an update for the 'samba'; package(s) announced via the USN-4559-1 advisory.
Description:Summary:
The remote host is missing an update for the 'samba'
package(s) announced via the USN-4559-1 advisory.

Vulnerability Insight:
Tom Tervoort discovered that the Netlogon protocol implemented by Samba
incorrectly handled the authentication scheme. A remote attacker could use
this issue to forge an authentication token and steal the credentials of
the domain admin.

While a previous security update fixed the issue by changing the 'server
schannel' setting to default to 'yes', instead of 'auto', which forced a
secure netlogon channel, this update provides additional improvements.

For compatibility reasons with older devices, Samba now allows specifying
an insecure netlogon configuration per machine.

In addition, this update adds additional server checks for the protocol
attack in the client-specified challenge to provide some protection when
'server schannel = no/auto' and avoid the false-positive results when
running the proof-of-concept exploit.

Affected Software/OS:
'samba' package(s) on Ubuntu 20.04 LTS, Ubuntu 18.04 LTS, Ubuntu 16.04 LTS.

Solution:
Please install the updated package(s).

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-1472
CERT/CC vulnerability note: VU#490028
https://www.kb.cert.org/vuls/id/490028
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H4OTFBL6YDVFH2TBJFJIE4FMHPJEEJK3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TAPQQZZAT4TG3XVRTAFV2Y3S7OAHFBUP/
http://packetstormsecurity.com/files/159190/Zerologon-Proof-Of-Concept.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1472
http://www.openwall.com/lists/oss-security/2020/09/17/2
SuSE Security Announcement: openSUSE-SU-2020:1513 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00080.html
SuSE Security Announcement: openSUSE-SU-2020:1526 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00086.html
https://usn.ubuntu.com/4510-1/
https://usn.ubuntu.com/4510-2/
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.