CVE-2013-0172

Samba 4.0.x < 4.0.1 - Authenticated LDAP Object Modification via Improper Access Control Entry Interpretation

Title source: llm
STIX 2.1

Description

Samba 4.0.x before 4.0.1, in certain Active Directory domain-controller configurations, does not properly interpret Access Control Entries that are based on an objectClass, which allows remote authenticated users to bypass intended restrictions on modifying LDAP directory objects by leveraging (1) objectClass access by a user, (2) objectClass access by a group, or (3) write access to an attribute.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.samba.org/samba/security/CVE-2013-0172

Scores

EPSS 0.0028
EPSS Percentile 51.7%

Details

CWE
CWE-264
Status published
Products (1)
samba/samba 4.0.0
Published Jan 17, 2013
Tracked Since Feb 18, 2026