Impact: Moderate Public Date: 2019-06-19 CWE: CWE-476 Bugzilla: 1711816: CVE-2019-12435 samba: AD DC Denial of Service in DNS management server Samba 4.9.x before 4.9.9 and 4.10.x before 4.10.5 has a NULL pointer dereference, leading to Denial of Service. This is related to the AD DC DNS management server (dnsserver) RPC server process.
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2019-12435 from the MITRE CVE dictionary dictionary and NIST NVD.
This issue did not affect the version of samba as shipped with 'Red Hat Gluster Storage 3' as they did not include support for Active Directory Domain Controller.
NOTE: The following CVSS v3 metrics and score provided are preliminary and subject to review.
| CVSS3 Base Score | 6.5 |
|---|---|
| CVSS3 Base Metrics | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
| Attack Vector | Network |
| Attack Complexity | Low |
| Privileges Required | Low |
| User Interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity Impact | None |
| Availability Impact | High |
| Platform | Package | State |
|---|---|---|
| Red Hat Virtualization 4 | redhat-virtualization-host | Not affected |
| Red Hat Gluster Storage 3 | samba | Not affected |
| Red Hat Enterprise Linux 8 | samba | Not affected |
| Red Hat Enterprise Linux 7 | samba | Not affected |
| Red Hat Enterprise Linux 6 | samba4 | Not affected |
| Red Hat Enterprise Linux 6 | samba | Not affected |
| Red Hat Enterprise Linux 5 | samba | Not affected |
The dnsserver task can be stopped by setting
'dcerpc endpoint servers = -dnsserver'
in the smb.conf and restarting Samba.
Vulmon