CVE-2016-2112

MEDIUM

Samba 3.x-4.4.x - LDAP Protocol Downgrade via Missing SASL Wrapping Enforcement

Title source: llm
STIX 2.1

Description

The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "client ldap sasl wrapping" setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream.

References (37)

Core 37
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0612.html
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2950-1
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0613.html
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2950-5
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182185.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0624.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0618.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1035533
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0614.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0620.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0611.html
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2950-3
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182288.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0619.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201612-47
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3548
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2950-2
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2950-4
Various Sources x_refsource_misc
http://badlock.org/
Various Sources x_refsource_confirm
https://www.samba.org/samba/history/samba-4.2.10.html
Patch, Vendor Advisory x_refsource_confirm
https://www.samba.org/samba/security/CVE-2016-2112.html
Various Sources x_refsource_confirm
https://www.samba.org/samba/latest_news.html#4.4.2
Various Sources x_refsource_confirm
https://bto.bluecoat.com/security-advisory/sa122
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182272.html

Scores

CVSS v3 5.9
EPSS 0.1661
EPSS Percentile 95.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-254
Status published
Products (38)
canonical/ubuntu_linux 14.04
canonical/ubuntu_linux 15.10
canonical/ubuntu_linux 16.04
samba/samba 3.0.0
samba/samba 3.0.1
samba/samba 3.0.2 (2 CPE variants)
samba/samba 3.0.2a
samba/samba 3.0.3
samba/samba 3.0.4 (2 CPE variants)
samba/samba 3.0.5
... and 28 more
Published Apr 25, 2016
Tracked Since Feb 18, 2026