CVE-2006-1059

Published: Mar 30, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

19468

third-party-advisory

x_refsource_SECUNIA

FEDORA-2006-259

vendor-advisory

x_refsource_FEDORA

24263

vdb-entry

x_refsource_OSVDB

17314

vdb-entry

x_refsource_BID

2006-0018

vendor-advisory

x_refsource_TRUSTIX

19455

third-party-advisory

x_refsource_SECUNIA

19539

third-party-advisory

x_refsource_SECUNIA

ADV-2006-1179

vdb-entry

x_refsource_VUPEN

1015850

vdb-entry

x_refsource_SECTRACK

http://us1.samba.org/samba/security/CAN-2006-1059.html

x_refsource_CONFIRM

20060330 [SECURITY] Samba 3.0.21-3.0.21c: Exposure of machine account credentials in winbindd log files

mailing-list

x_refsource_BUGTRAQ

samba-logfile-account-cleartext(25575)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-1059

Description

Affected Products

References