CVE-2016-0771

medium

Description

The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4.x before 4.4.0rc4, when an AD DC is configured, allows remote authenticated users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory by uploading a crafted DNS TXT record.

References

https://www.samba.org/samba/security/CVE-2016-0771.html

https://bugzilla.samba.org/show_bug.cgi?id=11686

https://bugzilla.samba.org/show_bug.cgi?id=11128

http://www.ubuntu.com/usn/USN-2922-1

http://www.securitytracker.com/id/1035219

http://www.securityfocus.com/bid/84273

http://www.debian.org/security/2016/dsa-3514

http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00063.html

Details

Source: Mitre, NVD

Published: 2016-03-13

Updated: 2016-12-03

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H

Severity: Medium