Vulnerability-Lookup

BDU:2018-00367

Vulnerability from fstec - Published: 13.03.2018

Title

Уязвимость пакета программ сетевого взаимодействия Samba, связанная с отсутствием проверки входных данных, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость пакета программ сетевого взаимодействия Samba связана с отсутствием проверки входных данных при вызовах RPC spoolss (в случае если RPC spoolss настроена для запуска в качестве внешнего демона). Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, вызвать отказ в обслуживании диспетчера очереди печати

Severity ?


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vendor

Samba Team, Juniper Networks Inc., ООО «РусБИТех-Астра», АО «НТЦ ИТ РОСА»

Software Name

Samba, Junos Space, Astra Linux Common Edition (запись в едином реестре российских программ №4433), РОСА Кобальт (запись в едином реестре российских программ №1999)

Software Version

4.0.0 (Samba), 4.0.1 (Samba), 4.0.10 (Samba), 4.0.11 (Samba), 4.0.12 (Samba), 4.0.13 (Samba), 4.0.14 (Samba), 4.0.15 (Samba), 4.0.16 (Samba), 4.0.17 (Samba), 4.0.18 (Samba), 4.0.19 (Samba), 4.0.2 (Samba), 4.0.20 (Samba), 4.0.21 (Samba), 4.0.22 (Samba), 4.0.23 (Samba), 4.0.24 (Samba), 4.0.3 (Samba), 4.0.4 (Samba), 4.0.5 (Samba), 4.0.6 (Samba), 4.0.7 (Samba), 4.0.8 (Samba), 4.0.9 (Samba), 4.1 (Samba), 4.1.1 (Samba), 4.1.10 (Samba), 4.1.11 (Samba), 4.1.12 (Samba), 4.1.13 (Samba), 4.1.14 (Samba), 4.1.15 (Samba), 4.1.16 (Samba), 4.1.17 (Samba), 4.1.18 (Samba), 4.1.19 (Samba), 4.1.2 (Samba), 4.1.20 (Samba), 4.1.21 (Samba), 4.1.22 (Samba), 4.1.23 (Samba), 4.1.3 (Samba), 4.1.5 (Samba), 4.1.6 (Samba), 4.1.7 (Samba), 4.1.8 (Samba), 4.1.9 (Samba), 4.2 (Samba), 4.2.0 Rc1 (Samba), 4.2.0 Rc2 (Samba), 4.2.0 Rc3 (Samba), 4.2.0 Rc4 (Samba), 4.2.1 (Samba), 4.2.10 (Samba), 4.2.11 (Samba), 4.2.12 (Samba), 4.2.13 (Samba), 4.2.14 (Samba), 4.2.2 (Samba), 4.2.3 (Samba), 4.2.4 (Samba), 4.2.5 (Samba), 4.2.6 (Samba), 4.2.7 (Samba), 4.2.8 (Samba), 4.2.9 (Samba), 4.2rc4 (Samba), 4.3 (Samba), 4.3.1 (Samba), 4.3.10 (Samba), 4.3.11 (Samba), 4.3.13 (Samba), 4.3.2 (Samba), 4.3.3 (Samba), 4.3.4 (Samba), 4.3.5 (Samba), 4.3.6 (Samba), 4.3.7 (Samba), 4.3.8 (Samba), 4.3.9 (Samba), 4.4 (Samba), 4.4 rc3 (Samba), 4.4 rc4 (Samba), 4.4.0 Rc2 (Samba), 4.4.1 (Samba), 4.4.10 (Samba), 4.4.11 (Samba), 4.4.12 (Samba), 4.4.14 (Samba), 4.4.15 (Samba), 4.4.16 (Samba), 4.4.2 (Samba), 4.4.3 (Samba), 4.4.4 (Samba), 4.4.5 (Samba), 4.4.6 (Samba), 4.4.7 (Samba), 4.4.8 (Samba), 4.4.9 (Samba), 4.5 (Samba), 4.5.1 (Samba), 4.5.10 (Samba), 4.5.12 (Samba), 4.5.13 (Samba), 4.5.14 (Samba), 4.5.15 (Samba), 4.5.2 (Samba), 4.5.3 (Samba), 4.5.4 (Samba), 4.5.5 (Samba), 4.5.6 (Samba), 4.5.7 (Samba), 4.6 (Samba), 4.6.1 (Samba), 4.6.11 (Samba), 4.6.4 (Samba), 4.6.6 (Samba), 4.6.7 (Samba), 4.6.8 (Samba), 4.7.3 (Samba), до 18.4R1 (Junos Space), 2.12 «Орёл» (Astra Linux Common Edition), - (РОСА Кобальт)

Possible Mitigations

Использование рекомендаций: Для Samba: https://www.samba.org/samba/security/CVE-2018-1050.html Для Astra Linux: Обновление программного обеспечения (пакета samba) до 2:4.5.12+dfsg-2+deb9u1 или более поздней версии Для ОС РОСА КОБАЛЬТ: http://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.004

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=1538771 https://www.samba.org/samba/security/CVE-2018-1050.html https://exchange.xforce.ibmcloud.com/vulnerabilities/140206 http://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.004

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Samba Team, Juniper Networks Inc., \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "4.0.0 (Samba), 4.0.1 (Samba), 4.0.10 (Samba), 4.0.11 (Samba), 4.0.12 (Samba), 4.0.13 (Samba), 4.0.14 (Samba), 4.0.15 (Samba), 4.0.16 (Samba), 4.0.17 (Samba), 4.0.18 (Samba), 4.0.19 (Samba), 4.0.2 (Samba), 4.0.20 (Samba), 4.0.21 (Samba), 4.0.22 (Samba), 4.0.23 (Samba), 4.0.24 (Samba), 4.0.3 (Samba), 4.0.4 (Samba), 4.0.5 (Samba), 4.0.6 (Samba), 4.0.7 (Samba), 4.0.8 (Samba), 4.0.9 (Samba), 4.1 (Samba), 4.1.1 (Samba), 4.1.10 (Samba), 4.1.11 (Samba), 4.1.12 (Samba), 4.1.13 (Samba), 4.1.14 (Samba), 4.1.15 (Samba), 4.1.16 (Samba), 4.1.17 (Samba), 4.1.18 (Samba), 4.1.19 (Samba), 4.1.2 (Samba), 4.1.20 (Samba), 4.1.21 (Samba), 4.1.22 (Samba), 4.1.23 (Samba), 4.1.3 (Samba), 4.1.5 (Samba), 4.1.6 (Samba), 4.1.7 (Samba), 4.1.8 (Samba), 4.1.9 (Samba), 4.2 (Samba), 4.2.0 Rc1 (Samba), 4.2.0 Rc2 (Samba), 4.2.0 Rc3 (Samba), 4.2.0 Rc4 (Samba), 4.2.1 (Samba), 4.2.10 (Samba), 4.2.11 (Samba), 4.2.12 (Samba), 4.2.13 (Samba), 4.2.14 (Samba), 4.2.2 (Samba), 4.2.3 (Samba), 4.2.4 (Samba), 4.2.5 (Samba), 4.2.6 (Samba), 4.2.7 (Samba), 4.2.8 (Samba), 4.2.9 (Samba), 4.2rc4 (Samba), 4.3 (Samba), 4.3.1 (Samba), 4.3.10 (Samba), 4.3.11 (Samba), 4.3.13 (Samba), 4.3.2 (Samba), 4.3.3 (Samba), 4.3.4 (Samba), 4.3.5 (Samba), 4.3.6 (Samba), 4.3.7 (Samba), 4.3.8 (Samba), 4.3.9 (Samba), 4.4 (Samba), 4.4 rc3 (Samba), 4.4 rc4 (Samba), 4.4.0 Rc2 (Samba), 4.4.1 (Samba), 4.4.10 (Samba), 4.4.11 (Samba), 4.4.12 (Samba), 4.4.14 (Samba), 4.4.15 (Samba), 4.4.16 (Samba), 4.4.2 (Samba), 4.4.3 (Samba), 4.4.4 (Samba), 4.4.5 (Samba), 4.4.6 (Samba), 4.4.7 (Samba), 4.4.8 (Samba), 4.4.9 (Samba), 4.5 (Samba), 4.5.1 (Samba), 4.5.10 (Samba), 4.5.12 (Samba), 4.5.13 (Samba), 4.5.14 (Samba), 4.5.15 (Samba), 4.5.2 (Samba), 4.5.3 (Samba), 4.5.4 (Samba), 4.5.5 (Samba), 4.5.6 (Samba), 4.5.7 (Samba), 4.6 (Samba), 4.6.1 (Samba), 4.6.11 (Samba), 4.6.4 (Samba), 4.6.6 (Samba), 4.6.7 (Samba), 4.6.8 (Samba), 4.7.3 (Samba), \u0434\u043e 18.4R1 (Junos Space), 2.12 \u00ab\u041e\u0440\u0451\u043b\u00bb (Astra Linux Common Edition), - (\u0420\u041e\u0421\u0410 \u041a\u043e\u0431\u0430\u043b\u044c\u0442)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Samba:\n\nhttps://www.samba.org/samba/security/CVE-2018-1050.html\n\n\u0414\u043b\u044f Astra Linux:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f (\u043f\u0430\u043a\u0435\u0442\u0430 samba) \u0434\u043e 2:4.5.12+dfsg-2+deb9u1 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438\n\n\u0414\u043b\u044f \u041e\u0421 \u0420\u041e\u0421\u0410 \u041a\u041e\u0411\u0410\u041b\u042c\u0422:\nhttp://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.004",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.03.2018",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.08.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "16.03.2018",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2018-00367",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2018-1050",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Samba, Junos Space, Astra Linux Common Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164433), \u0420\u041e\u0421\u0410 \u041a\u043e\u0431\u0430\u043b\u044c\u0442 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161999)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Common Edition 2.12 \u00ab\u041e\u0440\u0451\u043b\u00bb  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164433), \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb \u0420\u041e\u0421\u0410 \u041a\u043e\u0431\u0430\u043b\u044c\u0442 -  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21161999)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0430\u043a\u0435\u0442\u0430 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f Samba, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0430\u043a\u0435\u0442\u0430 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f Samba \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043f\u0440\u0438 \u0432\u044b\u0437\u043e\u0432\u0430\u0445 RPC spoolss (\u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0435\u0441\u043b\u0438 RPC spoolss \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u0430 \u0434\u043b\u044f \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u0432\u043d\u0435\u0448\u043d\u0435\u0433\u043e \u0434\u0435\u043c\u043e\u043d\u0430). \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u0434\u0438\u0441\u043f\u0435\u0442\u0447\u0435\u0440\u0430 \u043e\u0447\u0435\u0440\u0435\u0434\u0438 \u043f\u0435\u0447\u0430\u0442\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://bugzilla.redhat.com/show_bug.cgi?id=1538771\nhttps://www.samba.org/samba/security/CVE-2018-1050.html\nhttps://exchange.xforce.ibmcloud.com/vulnerabilities/140206\nhttp://wiki.rosalab.ru/ru/index.php/ROSA-SA-18-04-02.004",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}

CVE-2018-1050 (GCVE-0-2018-1050)

Vulnerability from cvelistv5 – Published: 2018-03-13 16:00 – Updated: 2024-09-16 23:16

Summary

All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.

Severity ?

No CVSS data available.

CWE

CWE-476

Assigner

redhat

References

URL

Tags

	https://usn.ubuntu.com/3595-2/	vendor-advisoryx_refsource_UBUNTU
	http://www.securityfocus.com/bid/103387	vdb-entryx_refsource_BID
	https://access.redhat.com/errata/RHSA-2018:2613	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:2612	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:1883	vendor-advisoryx_refsource_REDHAT
	https://www.debian.org/security/2018/dsa-4135	vendor-advisoryx_refsource_DEBIAN
	https://usn.ubuntu.com/3595-1/	vendor-advisoryx_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:1860	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:3056	vendor-advisoryx_refsource_REDHAT
	https://security.gentoo.org/glsa/201805-07	vendor-advisoryx_refsource_GENTOO
	http://www.securitytracker.com/id/1040493	vdb-entryx_refsource_SECTRACK
	https://lists.debian.org/debian-lts-announce/2018…	mailing-listx_refsource_MLIST
	https://lists.debian.org/debian-lts-announce/2019…	mailing-listx_refsource_MLIST
	https://help.ecostruxureit.com/display/public/UAD…	x_refsource_CONFIRM
	https://www.samba.org/samba/security/CVE-2018-1050.html	x_refsource_CONFIRM
	https://support.hpe.com/hpsc/doc/public/display?d…	x_refsource_CONFIRM
	https://bugzilla.redhat.com/show_bug.cgi?id=1538771	x_refsource_CONFIRM
	https://security.netapp.com/advisory/ntap-2018031…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Samba	Samba	Affected: All versions of Samba from 4.0.0 onwards

Date Public ?

2018-03-13 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:44:12.058Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "USN-3595-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3595-2/"
          },
          {
            "name": "103387",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/103387"
          },
          {
            "name": "RHSA-2018:2613",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2613"
          },
          {
            "name": "RHSA-2018:2612",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2612"
          },
          {
            "name": "RHSA-2018:1883",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1883"
          },
          {
            "name": "DSA-4135",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4135"
          },
          {
            "name": "USN-3595-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3595-1/"
          },
          {
            "name": "RHSA-2018:1860",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:1860"
          },
          {
            "name": "RHSA-2018:3056",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:3056"
          },
          {
            "name": "GLSA-201805-07",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201805-07"
          },
          {
            "name": "1040493",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040493"
          },
          {
            "name": "[debian-lts-announce] 20180327 [SECURITY] [DLA 1320-1] samba security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00024.html"
          },
          {
            "name": "[debian-lts-announce] 20190409 [SECURITY] [DLA 1754-1] samba security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2018-1050.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbns03834en_us"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1538771"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20180313-0001/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Samba",
          "vendor": "Samba",
          "versions": [
            {
              "status": "affected",
              "version": "All versions of Samba from 4.0.0 onwards"
            }
          ]
        }
      ],
      "datePublic": "2018-03-13T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-476",
              "description": "CWE-476",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-12-04T18:00:58.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "USN-3595-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3595-2/"
        },
        {
          "name": "103387",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/103387"
        },
        {
          "name": "RHSA-2018:2613",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2613"
        },
        {
          "name": "RHSA-2018:2612",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2612"
        },
        {
          "name": "RHSA-2018:1883",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1883"
        },
        {
          "name": "DSA-4135",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4135"
        },
        {
          "name": "USN-3595-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3595-1/"
        },
        {
          "name": "RHSA-2018:1860",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:1860"
        },
        {
          "name": "RHSA-2018:3056",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:3056"
        },
        {
          "name": "GLSA-201805-07",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201805-07"
        },
        {
          "name": "1040493",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040493"
        },
        {
          "name": "[debian-lts-announce] 20180327 [SECURITY] [DLA 1320-1] samba security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00024.html"
        },
        {
          "name": "[debian-lts-announce] 20190409 [SECURITY] [DLA 1754-1] samba security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.samba.org/samba/security/CVE-2018-1050.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbns03834en_us"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1538771"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20180313-0001/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "DATE_PUBLIC": "2018-03-13T00:00:00",
          "ID": "CVE-2018-1050",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Samba",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions of Samba from 4.0.0 onwards"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Samba"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-476"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "USN-3595-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3595-2/"
            },
            {
              "name": "103387",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/103387"
            },
            {
              "name": "RHSA-2018:2613",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2613"
            },
            {
              "name": "RHSA-2018:2612",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2612"
            },
            {
              "name": "RHSA-2018:1883",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1883"
            },
            {
              "name": "DSA-4135",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4135"
            },
            {
              "name": "USN-3595-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3595-1/"
            },
            {
              "name": "RHSA-2018:1860",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:1860"
            },
            {
              "name": "RHSA-2018:3056",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:3056"
            },
            {
              "name": "GLSA-201805-07",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201805-07"
            },
            {
              "name": "1040493",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040493"
            },
            {
              "name": "[debian-lts-announce] 20180327 [SECURITY] [DLA 1320-1] samba security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00024.html"
            },
            {
              "name": "[debian-lts-announce] 20190409 [SECURITY] [DLA 1754-1] samba security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00013.html"
            },
            {
              "name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
              "refsource": "CONFIRM",
              "url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
            },
            {
              "name": "https://www.samba.org/samba/security/CVE-2018-1050.html",
              "refsource": "CONFIRM",
              "url": "https://www.samba.org/samba/security/CVE-2018-1050.html"
            },
            {
              "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbns03834en_us",
              "refsource": "CONFIRM",
              "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbns03834en_us"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1538771",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1538771"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20180313-0001/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20180313-0001/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-1050",
    "datePublished": "2018-03-13T16:00:00.000Z",
    "dateReserved": "2017-12-04T00:00:00.000Z",
    "dateUpdated": "2024-09-16T23:16:06.670Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2018-00367

CVE-2018-1050 (GCVE-0-2018-1050)

Tags

Sightings

Nomenclature