CVE-2016-0771
MEDIUMSamba 4.x < 4.1.23, 4.2.x < 4.2.9, 4.3.x < 4.3.6, 4.4.x < 4.4.0rc4 - Authenticated Denial of Service via DNS TXT Record
Title source: llmDescription
The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory by uploading a crafted DNS TXT record.
References (8)
Core 8
Core References
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2016/dsa-3514
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00063.html
Vendor Advisory x_refsource_confirm
https://www.samba.org/samba/security/CVE-2016-0771.html
Issue Tracking x_refsource_confirm
https://bugzilla.samba.org/show_bug.cgi?id=11128
Issue Tracking x_refsource_confirm
https://bugzilla.samba.org/show_bug.cgi?id=11686
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/84273
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2922-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1035219
Scores
CVSS v3
5.9
EPSS
0.0566
EPSS Percentile
90.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (49)
samba/samba
4.0.0
samba/samba
4.0.1
samba/samba
4.0.2
samba/samba
4.0.3
samba/samba
4.0.4
samba/samba
4.0.5
samba/samba
4.0.6
samba/samba
4.0.7
samba/samba
4.0.8
samba/samba
4.0.9
... and 39 more
Published
Mar 13, 2016
Tracked Since
Feb 18, 2026