Wind River Support Network

HomeDefectsLIN9-5143
Fixed

LIN9-5143 : Security Advisory - samba - CVE-2016-2125

Created: Aug 28, 2017    Updated: Feb 2, 2019
Resolved Date: Sep 26, 2017
Found In Version: 9.0.0.9
Fix Version: 9.0.0.11
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

Samba client code always requests a forwardable ticket when using Kerberos authentication. This means the target server, which must be in the current or trusted domain/realm, is given a valid general purpose Kerberos "Ticket Granting Ticket" (TGT), which can be used to fully impersonate the authenticated user or service.

https://nvd.nist.gov/vuln/detail/CVE-2016-2125 

Other Downloads


CVEs


Live chat
Online