CVE-2013-0214
Description
Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
4.872
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SMB/CIFS file, print, and login server for Unix (USN-2922-1) samba_3.6.3-2ubuntu2.17_i386.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-2922-1) samba_3.6.3-2ubuntu2.17_amd64.deb | Linux |
| samba security update(DSA-3548-1) samba_3.6.6-6+deb7u9_i386.deb | Linux |
| samba security update(DSA-3548-1) samba_3.6.6-6+deb7u9_amd64.deb | Linux |
| Libsmbclient update (ELSA-2018-1860) libsmbclient-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Libsmbclient-devel update (ELSA-2018-1860) libsmbclient-devel-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba update (ELSA-2018-1860) samba-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-client update (ELSA-2018-1860) samba-client-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-common update (ELSA-2018-1860) samba-common-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-doc update (ELSA-2018-1860) samba-doc-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-domainjoin-gui update (ELSA-2018-1860) samba-domainjoin-gui-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-glusterfs update (ELSA-2018-1860) samba-glusterfs-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-swat update (ELSA-2018-1860) samba-swat-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-winbind update (ELSA-2018-1860) samba-winbind-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-winbind-clients update (ELSA-2018-1860) samba-winbind-clients-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-winbind-devel update (ELSA-2018-1860) samba-winbind-devel-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Samba-winbind-krb5-locator update (ELSA-2018-1860) samba-winbind-krb5-locator-3.6.23-51.0.1.el6.x86_64.rpm | Linux |
| Libsmbclient update (ELSA-2018-1860) libsmbclient-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Libsmbclient-devel update (ELSA-2018-1860) libsmbclient-devel-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba update (ELSA-2018-1860) samba-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-client update (ELSA-2018-1860) samba-client-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-common update (ELSA-2018-1860) samba-common-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-doc update (ELSA-2018-1860) samba-doc-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-domainjoin-gui update (ELSA-2018-1860) samba-domainjoin-gui-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-swat update (ELSA-2018-1860) samba-swat-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-winbind update (ELSA-2018-1860) samba-winbind-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-winbind-clients update (ELSA-2018-1860) samba-winbind-clients-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-winbind-devel update (ELSA-2018-1860) samba-winbind-devel-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Samba-winbind-krb5-locator update (ELSA-2018-1860) samba-winbind-krb5-locator-3.6.23-51.0.1.el6.i686.rpm | Linux |
| Ctdb update (ELSA-2018-3056) ctdb-4.8.3-4.el7.x86_64.rpm | Linux |
| Ctdb-tests update (ELSA-2018-3056) ctdb-tests-4.8.3-4.el7.x86_64.rpm | Linux |
| Libsmbclient update (ELSA-2018-3056) libsmbclient-4.8.3-4.el7.x86_64.rpm | Linux |
| Libsmbclient-devel update (ELSA-2018-3056) libsmbclient-devel-4.8.3-4.el7.x86_64.rpm | Linux |
| Libwbclient update (ELSA-2018-3056) libwbclient-4.8.3-4.el7.x86_64.rpm | Linux |
| Libwbclient-devel update (ELSA-2018-3056) libwbclient-devel-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba update (ELSA-2018-3056) samba-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-client update (ELSA-2018-3056) samba-client-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-client-libs update (ELSA-2018-3056) samba-client-libs-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-common-libs update (ELSA-2018-3056) samba-common-libs-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-common-tools update (ELSA-2018-3056) samba-common-tools-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-dc update (ELSA-2018-3056) samba-dc-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-dc-libs update (ELSA-2018-3056) samba-dc-libs-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-devel update (ELSA-2018-3056) samba-devel-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-krb5-printing update (ELSA-2018-3056) samba-krb5-printing-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-libs update (ELSA-2018-3056) samba-libs-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-python update (ELSA-2018-3056) samba-python-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-python-test update (ELSA-2018-3056) samba-python-test-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-test update (ELSA-2018-3056) samba-test-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-test-libs update (ELSA-2018-3056) samba-test-libs-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-vfs-glusterfs update (ELSA-2018-3056) samba-vfs-glusterfs-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-winbind update (ELSA-2018-3056) samba-winbind-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-winbind-clients update (ELSA-2018-3056) samba-winbind-clients-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-winbind-krb5-locator update (ELSA-2018-3056) samba-winbind-krb5-locator-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-winbind-modules update (ELSA-2018-3056) samba-winbind-modules-4.8.3-4.el7.x86_64.rpm | Linux |
| Samba-common update (ELSA-2018-3056) samba-common-4.8.3-4.el7.noarch.rpm | Linux |
| Samba-pidl update (ELSA-2018-3056) samba-pidl-4.8.3-4.el7.noarch.rpm | Linux |
| Libsmbclient update (ELSA-2018-3056) libsmbclient-4.8.3-4.el7.i686.rpm | Linux |
| Libsmbclient-devel update (ELSA-2018-3056) libsmbclient-devel-4.8.3-4.el7.i686.rpm | Linux |
| Libwbclient update (ELSA-2018-3056) libwbclient-4.8.3-4.el7.i686.rpm | Linux |
| Libwbclient-devel update (ELSA-2018-3056) libwbclient-devel-4.8.3-4.el7.i686.rpm | Linux |
| Samba-client-libs update (ELSA-2018-3056) samba-client-libs-4.8.3-4.el7.i686.rpm | Linux |
| Samba-devel update (ELSA-2018-3056) samba-devel-4.8.3-4.el7.i686.rpm | Linux |
| Samba-libs update (ELSA-2018-3056) samba-libs-4.8.3-4.el7.i686.rpm | Linux |
| Samba-test-libs update (ELSA-2018-3056) samba-test-libs-4.8.3-4.el7.i686.rpm | Linux |
| Samba-winbind-modules update (ELSA-2018-3056) samba-winbind-modules-4.8.3-4.el7.i686.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234