Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2006-1059 | First vendor Publication | 2006-03-30 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:L/AC:H/Au:N/C:P/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 1.2 | Attack Range | Local |
| Cvss Impact Score | 2.9 | Attack Complexity | High |
| Cvss Expoit Score | 1.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1059 |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 4 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2008-09-04 | Name : FreeBSD Ports: samba File : nvt/freebsd_samba6.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 24263 | Samba winbindd Debug Log Server Credentials Local Disclosure Samba winbindd contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plain text winbindd passwords of a domain member server. When the log level is set to 5 or higher, winbindd stores these credentials in a plain text file readable by non-administrative users, which may lead to a loss of confidentiality. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2007-02-22 | Name : The remote Samba server is vulnerable to a local information disclosure flaw. File : samba_local_info_disclosure.nasl - Type : ACT_GATHER_INFO |
| 2006-05-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_92fd40ebc45811da9c7900123ffe8333.nasl - Type : ACT_GATHER_INFO |
| 2006-04-03 | Name : The remote Fedora Core host is missing a security update. File : fedora_2006-259.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:20:49 |
|
| 2024-11-28 12:08:26 |
|
| 2024-08-02 12:04:10 |
|
| 2024-08-02 01:01:52 |
|
| 2024-02-02 01:03:53 |
|
| 2024-02-01 12:01:52 |
|
| 2023-09-05 12:03:39 |
|
| 2023-09-05 01:01:43 |
|
| 2023-09-02 12:03:42 |
|
| 2023-09-02 01:01:44 |
|
| 2023-08-12 12:04:18 |
|
| 2023-08-12 01:01:44 |
|
| 2023-08-11 12:03:46 |
|
| 2023-08-11 01:01:46 |
|
| 2023-08-06 12:03:33 |
|
| 2023-08-06 01:01:45 |
|
| 2023-08-04 12:03:37 |
|
| 2023-08-04 01:01:47 |
|
| 2023-07-14 12:03:36 |
|
| 2023-07-14 01:01:46 |
|
| 2023-03-29 01:03:50 |
|
| 2023-03-28 12:01:50 |
|
| 2022-10-11 12:03:13 |
|
| 2022-10-11 01:01:37 |
|
| 2021-05-04 12:03:45 |
|
| 2021-04-22 01:04:19 |
|
| 2020-05-23 00:17:29 |
|
| 2018-10-18 21:20:00 |
|
| 2017-07-20 09:23:24 |
|
| 2016-06-28 15:39:05 |
|
| 2016-04-26 14:22:19 |
|
| 2014-02-17 10:34:56 |
|
| 2013-05-11 10:51:06 |
|
