This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Canonical First view 2018-03-13
Product Ubuntu Linux Last view 2018-03-13
Version 17.10 Type Os
Update *  
Edition *  
Language *  
Sofware Edition lts  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:canonical:ubuntu_linux

Activity : Overall

Related : CVE

  Date Alert Description
8.8 2018-03-13 CVE-2018-1057

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users' passwords, including administrative users and privileged service accounts (eg Domain Controllers).

3.1 2018-03-13 CVE-2018-1050

All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash.

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-732 Incorrect Permission Assignment for Critical Resource
50% (1) CWE-20 Improper Input Validation

Snort® IPS/IDS

Date Description
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46282 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46281 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46280 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46279 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46278 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46277 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46276 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46275 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46274 - Type : SERVER-SAMBA - Revision : 1
2018-05-15 Samba spoolss denial of service attempt
RuleID : 46273 - Type : SERVER-SAMBA - Revision : 1

Nessus® Vulnerability Scanner

id Description
2019-01-10 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10917_184R1.nasl - Type: ACT_GATHER_INFO
2018-12-20 Name: The remote Amazon Linux 2 host is missing a security update.
File: al2_ALAS-2018-1126.nasl - Type: ACT_GATHER_INFO
2018-12-17 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-3056.nasl - Type: ACT_GATHER_INFO
2018-06-22 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-1860.nasl - Type: ACT_GATHER_INFO
2018-06-22 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-1883.nasl - Type: ACT_GATHER_INFO
2018-05-23 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201805-07.nasl - Type: ACT_GATHER_INFO
2018-03-28 Name: The remote Debian host is missing a security update.
File: debian_DLA-1320.nasl - Type: ACT_GATHER_INFO
2018-03-21 Name: The remote Fedora host is missing a security update.
File: fedora_2018-7d0acd608b.nasl - Type: ACT_GATHER_INFO
2018-03-15 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-c5c651ac44.nasl - Type: ACT_GATHER_INFO
2018-03-14 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2018-072-02.nasl - Type: ACT_GATHER_INFO
2018-03-14 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4135.nasl - Type: ACT_GATHER_INFO
2018-03-14 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_fb26f78a26a911e8a1c200505689d4ae.nasl - Type: ACT_GATHER_INFO