CVE-2012-2111Improper Access Control in Samba

CWE-264CWE-284Improper Access Control9 documents8 sources
Severity
6.5MEDIUMNVD
EPSS
2.3%
top 15.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
SambaDebian SambaCitrix Workspace
Timeline
PublishedApr 30
Latest updateMay 14

Description

The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not properly restrict modifications to the privileges database, which allows remote authenticated users to obtain the "take ownership" privilege via an LSA connection.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages4 packages

debiandebian/samba< samba 2:3.6.5-1 (bookworm)
Debiansamba/samba< 2:3.6.5-1+3
NVDsamba/samba37 versions+36

Patches

Patch: www.samba.orgPatch: www.samba.org

🔴Vulnerability Details

2
GHSA
GHSA-7948-mr73-p8vq: The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 32022-05-14
OSV
CVE-2012-2111: The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 32012-04-30

📋Vendor Advisories

4
Citrix
CVE-2022-21825: An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker2022-02-09
Ubuntu
Samba vulnerability2012-05-01
Red Hat
samba: Incorrect permission checks when granting/removing privileges2012-04-30
Debian
CVE-2012-2111: samba - The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAcco...2012

💬Community

2
Bugzilla
CVE-2012-2111 samba: Incorrect permission checks when granting/removing privileges [fedora-all]2012-04-30
Bugzilla
CVE-2012-2111 samba: Incorrect permission checks when granting/removing privileges2012-04-17