Man-in-the-Middle Vulnerability in Samba's Heimdal KDC Implementation
CVE-2018-16860

7.5HIGH

Key Information:

Vendor

Samba

Status
Samba
Vendor
CVE Published:
31 July 2019
đź”” Create Samba Vulnerability Alert

What is CVE-2018-16860?

A vulnerability exists in the KDC implementation of Samba's Heimdal versions 4.8.x, 4.9.x, and 4.10.x, allowing an attacker to impersonate a legitimate user. By intercepting requests to the KDC, the attacker can modify the username in the request, enabling them to receive a Kerberos ticket for any user that exists in the KDC. This flaw poses a significant risk in environments utilizing Active Directory Domain Controller mode, as it can lead to unauthorized access and potential data breaches.

Affected Version(s)

samba 4.8.x up to, excluding 4.8.12

samba 4.9.x up to, excluding 4.9.8

samba 4.10.x up to, excluding 4.10.3

References

https://www.synology.com/security/advisory/Synology_SA_19_23
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16860
x_refsource_CONFIRM
https://www.samba.org/samba/security/CVE-2018-16860.html
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.