Samba objectClass LDAP Directory Object Access Bypass

by Carol~ Moderator - 1/15/13 11:37 AM

In Reply to: VULNERABILITIES / FIXES - January 15, 2013 by Carol~ Moderator

Samba objectClass LDAP Directory Object Access Bypass Vulnerability

Release Date : 2013-01-15

Criticality level Less critical
Impact : Security Bypass
Where: From local network
Solution Status : Vendor Patch

Software: Samba 4.x

Description:
A vulnerability has been reported in Samba, which can be exploited by malicious users to bypass certain security restrictions.

The vulnerability is caused due to an error when handling objectClass based LDAP Access Control Entries, which allows write access to the object and can be exploited to modify the object attributes.

Successful exploitation requires that users are given objectClass rights via the "pre-windows 2000 compatible access" group.

The vulnerability is reported in version 4.0.0.

Solution:
Update to version 4.0.1.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://www.samba.org/samba/security/CVE-2013-0172

http://secunia.com/advisories/51840/