CVE-2013-4496
14.03.2014, 10:55
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.Enginsight
Vendor | Product | Version |
---|---|---|
samba | samba | 3.4.0 ≤ 𝑥 < 3.6.23 |
samba | samba | 4.0.0 ≤ 𝑥 < 4.0.16 |
samba | samba | 4.1.0 ≤ 𝑥 < 4.1.6 |
canonical | ubuntu_linux | 10.04 |
canonical | ubuntu_linux | 12.04 |
canonical | ubuntu_linux | 12.10 |
canonical | ubuntu_linux | 13.10 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
samba |
| ||||||||||||||||||||||
samba4 |
|
Common Weakness Enumeration
References