CVE-2018-16860
HIGHSamba <4.8.12, <4.9.8, <4.10.3 - Privilege Escalation
Title source: llmDescription
A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name (principal) in the request with any desired user name (principal) that exists in the KDC effectively obtaining a ticket for that principal.
References (17)
Core 17
Core References
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT210346
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT210348
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT210351
Vendor Advisory x_refsource_confirm
https://www.synology.com/security/advisory/Synology_SA_19_23
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16860
Mitigation, Vendor Advisory x_refsource_misc
https://www.samba.org/samba/security/CVE-2018-16860.html
Mailing List mailing-list
x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Aug/25
Mailing List mailing-list
x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Aug/22
Mailing List mailing-list
x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Aug/23
Mailing List mailing-list
x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Aug/21
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00026.html
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Aug/14
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Aug/11
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Aug/13
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Aug/15
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT210353
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/202003-52
Scores
CVSS v3
7.5
EPSS
0.0249
EPSS Percentile
82.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-358
Status
published
Products (2)
heimdal_project/heimdal
0.8 - 7.5.0
samba/samba
4.8.0 - 4.8.12
Published
Jul 31, 2019
Tracked Since
Feb 18, 2026