A flaw was found in Samba. Samba AD users can cause the server to access uninitialized data with an LDAP add or modify the request, usually resulting in a segmentation fault.
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file,
print, and login server for Unix
CVE-2022-2031
Luke Howard reported that Samba AD users can bypass certain
restrictions associated with changing passwords A user who has been
requested to change their password can exploit this to obtain and
use tickets to oth ...
It was found that the Kerberos Key Distribution Center (KDC) delegation feature, Service for User (S4U), did not sufficiently protect the tickets it's providing from tempering A malicious, authenticated service principal allowed to delegate could use this flaw to impersonate a non-forwardable user (CVE-2020-17049)
A flaw was found in Samba Some ...
A flaw was found in Samba Samba AD users can cause the server to access uninitialized data with an LDAP add or modify the request, usually resulting in a segmentation fault ...