CVE-2018-1050 — MEDIUM (4.3)

Q: How severe is CVE-2018-1050?

CVE-2018-1050 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-1050?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Samba Samba, Debian Debian Linux, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server.

Vulnerability Description

All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.

CVSS Score

4.3

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	12.04
Samba	Samba	>= 3.6.0, < 4.5.16
Debian	Debian Linux	7.0
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Workstation	6.0

Related Weaknesses (CWE)

CWE-476

References

http://www.securityfocus.com/bid/103387Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1040493Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:1860Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1883Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2612Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2613Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3056Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1538771Issue TrackingThird Party Advisory
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxurThird Party Advisory
https://lists.debian.org/debian-lts-announce/2018/03/msg00024.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/04/msg00013.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/201805-07Third Party Advisory
https://security.netapp.com/advisory/ntap-20180313-0001/Third Party Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeThird Party Advisory
https://usn.ubuntu.com/3595-1/Third Party Advisory

FAQ

What is CVE-2018-1050?

CVE-2018-1050 is a vulnerability with a CVSS score of 4.3 (MEDIUM). All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on s...

How severe is CVE-2018-1050?

CVE-2018-1050 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-1050?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Samba Samba, Debian Debian Linux, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server.