Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

CVE-2021-23192

Related Vulnerabilities: CVE-2021-23192  

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.

Source

Description

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.

Mitigation

Setting 

dcesrv:max auth states=0
 in the smb.conf will provide some mitigation against this issue.

Additional Information

  • Bugzilla 2019666: CVE-2021-23192 samba: Subsequent DCE/RPC fragment injection vulnerability
  • FAQ: Frequently asked questions about CVE-2021-23192

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started