CVE-2018-16860

CVSS V2 Medium 6 CVSS V3 High 7.5
Description
A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name (principal) in the request with any desired user name (principal) that exists in the KDC effectively obtaining a ticket for that principal.
Overview
  • CVE ID
  • CVE-2018-16860
  • Assigner
  • secalert@redhat.com
  • Vulnerability Status
  • Modified
  • Published Version
  • 2019-07-31T15:15:11
  • Last Modified Date
  • 2019-08-14T12:15:11
Weakness Enumerations
CWE URL
CWE-358 http://cwe.mitre.org/data/definitions/358.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* 1 OR 4.8.0 4.8.12
cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* 1 OR 4.9.0 4.9.8
cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:* 1 OR 4.10.0 4.10.3
cpe:2.3:a:heimdal_project:heimdal:*:*:*:*:*:*:*:* 1 OR 0.8 7.5.0
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:M/Au:S/C:P/I:P/A:P
  • Access Vector
  • NETWORK
  • Access Compatibility
  • MEDIUM
  • Authentication
  • SINGLE
  • Confidentiality Impact
  • PARTIAL
  • Integrity Impact
  • PARTIAL
  • Availability Impact
  • PARTIAL
  • Base Score
  • 6
  • Severity
  • MEDIUM
  • Exploitability Score
  • 6.8
  • Impact Score
  • 6.4
CVSS Version 3
  • Version
  • 3.0
  • Vector String
  • CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Attack Vector
  • NETWORK
  • Attack Compatibility
  • HIGH
  • Privileges Required
  • LOW
  • User Interaction
  • NONE
  • Scope
  • UNCHANGED
  • Confidentiality Impact
  • HIGH
  • Availability Impact
  • HIGH
  • Base Score
  • 7.5
  • Base Severity
  • HIGH
  • Exploitability Score
  • 1.6
  • Impact Score
  • 5.9
References
Reference URL Reference Tags
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16860 Issue Tracking Third Party Advisory
https://www.samba.org/samba/security/CVE-2018-16860.html Mitigation Vendor Advisory
https://seclists.org/bugtraq/2019/Aug/21
https://seclists.org/bugtraq/2019/Aug/23
https://seclists.org/bugtraq/2019/Aug/25
https://seclists.org/bugtraq/2019/Aug/22
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00026.html
http://seclists.org/fulldisclosure/2019/Aug/13
http://seclists.org/fulldisclosure/2019/Aug/14
http://seclists.org/fulldisclosure/2019/Aug/11
http://seclists.org/fulldisclosure/2019/Aug/15
https://www.synology.com/security/advisory/Synology_SA_19_23
https://support.apple.com/HT210346
https://support.apple.com/HT210348
https://support.apple.com/HT210351
https://support.apple.com/HT210353
https://security.gentoo.org/glsa/202003-52
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2018-16860
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16860
History
Created Old Value New Value Data Type Notes
2022-05-10 17:38:30 Added to TrackCVE
2022-12-04 00:13:17 2019-07-31T15:15Z 2019-07-31T15:15:11 CVE Published Date updated
2022-12-04 00:13:17 2019-08-14T12:15:11 CVE Modified Date updated
2022-12-04 00:13:17 Modified Vulnerability Status updated