vulnerability
Oracle Linux: CVE-2016-2114: ELSA-2016-0612: samba and samba4 security, bug fix, and enhancement update (CRITICAL) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:H/Au:N/C:N/I:C/A:N) | 04/13/2016 | 04/13/2016 | 01/07/2025 |
Severity
5
CVSS
(AV:N/AC:H/Au:N/C:N/I:C/A:N)
Published
04/13/2016
Added
04/13/2016
Modified
01/07/2025
Description
The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream.
Solution(s)
oracle-linux-upgrade-ctdboracle-linux-upgrade-ctdb-develoracle-linux-upgrade-ctdb-testsoracle-linux-upgrade-ipa-admintoolsoracle-linux-upgrade-ipa-clientoracle-linux-upgrade-ipa-pythonoracle-linux-upgrade-ipa-serveroracle-linux-upgrade-ipa-server-dnsoracle-linux-upgrade-ipa-server-selinuxoracle-linux-upgrade-ipa-server-trust-adoracle-linux-upgrade-ldb-toolsoracle-linux-upgrade-libldboracle-linux-upgrade-libldb-develoracle-linux-upgrade-libsmbclientoracle-linux-upgrade-libsmbclient-develoracle-linux-upgrade-libtallocoracle-linux-upgrade-libtalloc-develoracle-linux-upgrade-libtdboracle-linux-upgrade-libtdb-develoracle-linux-upgrade-libteventoracle-linux-upgrade-libtevent-develoracle-linux-upgrade-libwbclientoracle-linux-upgrade-libwbclient-develoracle-linux-upgrade-openchangeoracle-linux-upgrade-openchange-clientoracle-linux-upgrade-openchange-develoracle-linux-upgrade-openchange-devel-docsoracle-linux-upgrade-pyldboracle-linux-upgrade-pyldb-develoracle-linux-upgrade-pytallocoracle-linux-upgrade-pytalloc-develoracle-linux-upgrade-python-tdboracle-linux-upgrade-python-teventoracle-linux-upgrade-sambaoracle-linux-upgrade-samba4oracle-linux-upgrade-samba4-clientoracle-linux-upgrade-samba4-commonoracle-linux-upgrade-samba4-dcoracle-linux-upgrade-samba4-dc-libsoracle-linux-upgrade-samba4-develoracle-linux-upgrade-samba4-libsoracle-linux-upgrade-samba4-pidloracle-linux-upgrade-samba4-pythonoracle-linux-upgrade-samba4-testoracle-linux-upgrade-samba4-winbindoracle-linux-upgrade-samba4-winbind-clientsoracle-linux-upgrade-samba4-winbind-krb5-locatororacle-linux-upgrade-samba-clientoracle-linux-upgrade-samba-client-libsoracle-linux-upgrade-samba-commonoracle-linux-upgrade-samba-common-libsoracle-linux-upgrade-samba-common-toolsoracle-linux-upgrade-samba-dcoracle-linux-upgrade-samba-dc-libsoracle-linux-upgrade-samba-develoracle-linux-upgrade-samba-libsoracle-linux-upgrade-samba-pidloracle-linux-upgrade-samba-pythonoracle-linux-upgrade-samba-testoracle-linux-upgrade-samba-test-develoracle-linux-upgrade-samba-test-libsoracle-linux-upgrade-samba-vfs-glusterfsoracle-linux-upgrade-samba-winbindoracle-linux-upgrade-samba-winbind-clientsoracle-linux-upgrade-samba-winbind-krb5-locatororacle-linux-upgrade-samba-winbind-modulesoracle-linux-upgrade-tdb-tools
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.