QwikSec

Security Database

CVE

CWE

Training

CVE-2018-16851

Published: Nov 28, 2018

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

6.5

MEDIUM

Description

Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the client, the entries are cached in a single memory object with a maximum size of 256MB. When this size is reached, the Samba process providing the LDAP service will follow the NULL pointer, terminating the process. There is no further vulnerability associated with this issue, merely a denial of service.

Vendor	Product	Versions
[UNKNOWN]	samba	affected `4.7.12` affected `4.8.7` affected `4.9.3`

Weaknesses (CWE)

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

References

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

https://security.netapp.com/advisory/ntap-20181127-0001/

x_refsource_CONFIRM

[debian-lts-announce] 20181215 [SECURITY] [DLA 1607-1] samba security update

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16851

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

https://www.samba.org/samba/security/CVE-2018-16851.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.