CVE-2007-4138 — Samba vulnerability

CWE-2647 documents6 sources

Severity

6.9MEDIUMNVD

EPSS

0.1%

top 68.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba

Timeline

PublishedSep 14

Latest updateMay 1

Description

The Winbind nss_info extension (nsswitch/idmap_ad.c) in idmap_ad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the (1) RFC2307 or (2) Services for UNIX (SFU) primary group attribute is not defined.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages3 packages

▶debiandebian/samba< samba 3.0.26-1 (bookworm)

▶Debiansamba/samba< 3.0.26-1+3

▶NVDsamba/samba4 versions+3

Patches

Patch: secunia.com ↗Patch: www.securityfocus.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-74rm-gxr2-j77h: The Winbind nss_info extension (nsswitch/idmap_ad↗2022-05-01

▶

OSV

CVE-2007-4138: The Winbind nss_info extension (nsswitch/idmap_ad↗2007-09-14

▶

📋Vendor Advisories

Red Hat

samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin↗2007-09-11

▶

Debian

CVE-2007-4138: samba - The Winbind nss_info extension (nsswitch/idmap_ad.c) in idmap_ad.so in Samba 3.0...↗2007

▶

💬Community

Bugzilla

CVE-2007-4138 samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin [F7]↗2007-09-11

▶

Bugzilla

CVE-2007-4138 samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin↗2007-09-11

▶