Samba objectClass LDAP Directory Object Access Bypass
Samba objectClass LDAP Directory Object Access Bypass Vulnerability
Release Date : 2013-01-15
Criticality level Less critical
Impact : Security Bypass
Where: From local network
Solution Status : Vendor Patch
Software: Samba 4.x
A vulnerability has been reported in Samba, which can be exploited by malicious users to bypass certain security restrictions.
The vulnerability is caused due to an error when handling objectClass based LDAP Access Control Entries, which allows write access to the object and can be exploited to modify the object attributes.
Successful exploitation requires that users are given objectClass rights via the "pre-windows 2000 compatible access" group.
The vulnerability is reported in version 4.0.0.
Update to version 4.0.1.
Provided and/or discovered by:
Reported by the vendor.