CVE-2012-6150 — Improper Input Validation in Samba

CWE-20 — Improper Input Validation8 documents7 sources

Severity

3.6LOWNVD

EPSS

0.1%

top 68.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samba Debian Samba Canonical Ubuntu Linux

Timeline

PublishedDec 3

Latest updateMay 17

Description

The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging an administrator's pam_winbind configuration-file mistake.

CVSS vector

AV:N/AC:H/C:P/I:P/A:NExploitability: 3.9 | Impact: 4.9

Affected Packages3 packages

▶NVDsamba/samba3.3.10 — 3.4.0+3

▶debiandebian/samba< samba 2:4.0.13+dfsg-1 (bookworm)

▶Debiansamba/samba< 2:4.0.13+dfsg-1+3

Also affects: Ubuntu Linux 10.04, 12.04, 12.10, 13.04, 13.10

Patches

Patch: bugzilla.samba.org ↗Patch: bugzilla.samba.org ↗

🔴Vulnerability Details

GHSA

GHSA-65q8-2h4w-pqq6: The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind↗2022-05-17

▶

OSV

CVE-2012-6150: The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind↗2013-12-03

▶

📋Vendor Advisories

Ubuntu

Samba vulnerabilities↗2013-12-11

▶

Red Hat

samba: pam_winbind fails open when non-existent group specified to require_membership_of↗2012-06-12

▶

Debian

CVE-2012-6150: samba - The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in S...↗2012

▶

💬Community

Bugzilla

CVE-2012-6150 samba: pam_winbind fails open when non-existent group specified to require_membership_of [fedora-all]↗2013-12-09

▶

Bugzilla

CVE-2012-6150 samba: pam_winbind fails open when non-existent group specified to require_membership_of↗2013-12-02

▶