CVE-2012-2111
samba - missing permission checks
EPSS 2.3%
Description
The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not properly restrict modifications to the privileges database, which allows remote authenticated users to obtain the "take ownership" privilege via an LSA connection.
How to fix CVE-2012-2111
To remediate CVE-2012-2111, upgrade the affected package to a fixed version below.
- Debian/samba—upgrade to 2:3.6.5-1 or later
- Debian/samba—upgrade to 2:3.5.6~dfsg-3squeeze8 or later
Is CVE-2012-2111 being exploited?
Low — EPSS is 2.3%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 2:3.6.5-1
- from 0, < 2:3.5.6~dfsg-3squeeze8