CVE-2014-8143
EPSS 4.9%
Description
Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain Controller (AD DC) is configured, allows remote authenticated users to set the LDB userAccountControl UF_SERVER_TRUST_ACCOUNT bit, and consequently gain privileges, by leveraging delegation of authority for user-account or computer-account creation.
How to fix CVE-2014-8143
To remediate CVE-2014-8143, upgrade the affected package to a fixed version below.
- Debian/samba—upgrade to 2:4.1.17+dfsg-1 or later
Is CVE-2014-8143 being exploited?
Low — EPSS is 4.9%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2:4.1.17+dfsg-1