Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-2522Cross-Site Request Forgery in Samba

CWE-352Cross-Site Request Forgery11 documents9 sources
Severity
6.8MEDIUMNVD
EPSS
18.2%
top 4.79%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
4
SambaDebian SambaCanonical Ubuntu Linux+1 more
Timeline
PublishedJul 29
Latest updateDec 29

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages3 packages

NVDsamba/samba3.0.03.3.16+2
debiandebian/samba< samba 2:3.5.10~dfsg-1 (bookworm)
Debiansamba/samba< 2:3.5.10~dfsg-1+3

Also affects: Debian Linux 5.0, 6.0, 7.0, Ubuntu Linux 10.04, 10.10, 11.04, 8.04

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.samba.orgPatch: bugzilla.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-5cxg-6999-xfwq: Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 32022-05-14
OSV
CVE-2011-2522: Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 32011-07-29

💥Exploits & PoCs

1
Exploit-DB
SWAT Samba Web Administration Tool - Cross-Site Request Forgery2011-07-27

📋Vendor Advisories

3
Ubuntu
Samba vulnerabilities2011-08-02
Red Hat
(SWAT): Absent CSRF protection in various Samba web configuration formulars2011-07-26
Debian
CVE-2011-2522: samba - Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Admi...2011

📄Research Papers

1
arXiv
One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware2022-12-29

💬Community

3
Bugzilla
CVE-2013-0214 samba: cross-site request forgery vulnerability in SWAT2013-01-30
Bugzilla
CVE-2011-2522 CVE-2011-2694 samba various flaws [fedora-all]2011-07-26
Bugzilla
CVE-2011-2522 samba (SWAT): Absent CSRF protection in various Samba web configuration formulars2011-07-14