Back to search
CVE-2016-2126
Published: May 11, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the winbindd privileged pipe can cause winbindd to cache elevated access permissions.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://www.samba.org/samba/security/CVE-2016-2126.html
x_refsource_CONFIRM
1037495
vdb-entry
x_refsource_SECTRACK
RHSA-2017:0495
vendor-advisory
x_refsource_REDHAT
RHSA-2017:0494
vendor-advisory
x_refsource_REDHAT
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43730
x_refsource_CONFIRM
RHSA-2017:1265
vendor-advisory
x_refsource_REDHAT
94994
vdb-entry
x_refsource_BID
RHSA-2017:0744
vendor-advisory
x_refsource_REDHAT
RHSA-2017:0662
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now