cbcvebase.
CVE-2015-7560
published 2016-03-13

CVE-2015-7560: The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4 allows remote…

PriorityP344medium6.5CVSS 3.1
AVNACLPRLUINSUCNIHAN
EPSS
12.94%
95.8th percentile
The SMB1 implementation in smbd in Samba 3.x and 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4 allows remote authenticated users to modify arbitrary ACLs by using a UNIX SMB1 call to create a symlink, and then using a non-UNIX SMB1 call to write to the ACL content.

Affected

15 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debiansamba< samba 2:4.3.6+dfsg-1 (bookworm)samba 2:4.3.6+dfsg-1 (bookworm)
sambasamba
sambasamba>= 0 < 2:4.3.6+dfsg-12:4.3.6+dfsg-1
sambasamba>= 0 < 2:4.3.6+dfsg-12:4.3.6+dfsg-1
sambasamba>= 0 < 2:4.3.6+dfsg-12:4.3.6+dfsg-1
sambasamba>= 0 < 2:4.3.6+dfsg-12:4.3.6+dfsg-1
sambasamba>= 0 < 2:4.1.6+dfsg-1ubuntu2.14.04.132:4.1.6+dfsg-1ubuntu2.14.04.13
sambasamba>= 3.2.0 < 4.1.234.1.23
sambasamba>= 4.2.0 < 4.2.94.2.9
sambasamba>= 4.3.0 < 4.3.64.3.6

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:N
osv6.5MEDIUM
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
vendor_ubuntu5.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.