Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not properly restrict modifications to the privileges database, which allows remote authenticated users to obtain the "take ownership" privilege via an LSA connection.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Samba权限许可和访问控制漏洞
Vulnerability Description
Samba是Samba团队开发的一套可使UNIX系列的操作系统与微软Windows操作系统的SMB/CIFS网络协议做连结的自由软件。该软件支持共享打印机、互相传输资料文件等。 Samba 3.4.17之前的3.4.x版本、3.5.15之前的 3.5.x 版本、3.6.5之前的3.6.x版本中的Smbd中的(1)CreateAccount(2)OpenAccount(3)AddAccountRights和(4)RemoveAccountRights LSA RPC程序中存在漏洞,该漏洞源于未正确限制对数据
CVSS Information
N/A
Vulnerability Type
N/A