CVE-2018-1057 — HIGH (8.8) — White Hats Nepal

Q: How severe is CVE-2018-1057?

CVE-2018-1057 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-1057?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Debian Debian Linux, Samba Samba.

Vulnerability Description

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Domain Controllers).

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	14.04
Debian	Debian Linux	8.0
Samba	Samba	>= 4.0.0, < 4.5.16

Related Weaknesses (CWE)

CWE-863

References

http://www.securityfocus.com/bid/103382Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1040494Third Party AdvisoryVDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1553553Issue TrackingThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/04/msg00013.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/201805-07Third Party Advisory
https://security.netapp.com/advisory/ntap-20180313-0001/Third Party Advisory
https://usn.ubuntu.com/3595-1/Third Party Advisory
https://www.debian.org/security/2018/dsa-4135Third Party Advisory
https://www.samba.org/samba/security/CVE-2018-1057.htmlMitigationVendor Advisory
https://www.synology.com/support/security/Synology_SA_18_08Third Party Advisory
http://www.securityfocus.com/bid/103382Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1040494Third Party AdvisoryVDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1553553Issue TrackingThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/04/msg00013.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/201805-07Third Party Advisory

FAQ

What is CVE-2018-1057?

CVE-2018-1057 is a vulnerability with a CVSS score of 8.8 (HIGH). On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' p...

How severe is CVE-2018-1057?

CVE-2018-1057 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-1057?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Debian Debian Linux, Samba Samba.