Samba 3.x prior to 3.6.23, 4.0.x prior to 4.0.16, and 4.1.x prior to 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote malicious users to obtain access via brute-force ChangePasswordUser2 (1) SAMR or (2) RAP attempts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
samba samba |
||
canonical ubuntu linux 13.10 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 12.04 |