Info

Disclosure

Mar 29, 2006

Discovery

Unknown

Dates

Exploit

Mar 29, 2006

Solution

Unknown

Description

Samba winbindd contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plain text winbindd passwords of a domain member server. When the log level is set to 5 or higher, winbindd stores these credentials in a plain text file readable by non-administrative users, which may lead to a loss of confidentiality.

Classification

Location: Local Access Required
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Solution: Upgrade
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to version 3.0.22 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by ensuring that non-administrative users do not have read read access to log files generated 'winbindd' log files of log level 5 or greater.

Products

Samba Project	Samba	3.0.21
		3.0.21a
		3.0.21b
		3.0.21c

References

Security Tracker: 1015850
Secunia Advisory ID: 19455 19468 19539
CVE ID: 2006-1059 (see also: NVD)
SCIP VulDB ID: 2122
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-03/0575.html
Vendor Specific Advisory URL: http://us1.samba.org/samba/security/CAN-2006-1059.html
Other Advisory URL: http://www.trustix.org/errata/2006/0018/

Credit

Samba Team - securitysamba.org - Samba Project

Direct URL: http://osvdb.org/24263

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Samba Project

Samba

References

Credit