Home

CVE-2016-2118

Description

The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka BADLOCK.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
77.138

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2016:0618) Critical: samba security, bug fix, and enhancement update openchange-devel-docs-2.0-4.el7_1.1.noarch.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update evolution-mapi-0.28.3-8.el6_2.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update evolution-mapi-0.28.3-8.el6_2.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update evolution-mapi-devel-0.28.3-8.el6_2.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update evolution-mapi-devel-0.28.3-8.el6_2.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libipa_hbac-1.5.1-66.el6_2.5.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libipa_hbac-1.5.1-66.el6_2.5.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libipa_hbac-devel-1.5.1-66.el6_2.5.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libipa_hbac-devel-1.5.1-66.el6_2.5.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libipa_hbac-python-1.9.2-129.el6_5.7.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libldb-1.1.25-2.el6_4.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libldb-devel-1.1.25-2.el6_4.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libsss_autofs-1.9.2-129.el6_5.7.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libsss_idmap-1.9.2-129.el6_5.7.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libsss_idmap-devel-1.9.2-129.el6_5.7.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libsss_sudo-1.9.2-129.el6_5.7.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update libsss_sudo-devel-1.9.2-129.el6_5.7.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update openchange-1.0-7.el6_6.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update openchange-devel-1.0-7.el6_6.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update sssd-1.9.2-129.el6_5.7.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update sssd-client-1.5.1-66.el6_2.5.i686.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update sssd-client-1.5.1-66.el6_2.5.x86_64.rpmLinux
(RHSA-2016:0620) Critical: samba4 security, bug fix, and enhancement update sssd-tools-1.9.2-129.el6_5.7.x86_64.rpmLinux
(RHSA-2016:0623) Important: samba security update libsmbclient-3.0.33-3.40.el5_9.i386.rpmLinux
(RHSA-2016:0623) Important: samba security update libsmbclient-devel-3.0.33-3.40.el5_9.i386.rpmLinux
(RHSA-2016:0623) Important: samba security update samba-3.0.33-3.40.el5_9.i386.rpmLinux
(RHSA-2016:0623) Important: samba security update samba-client-3.0.33-3.40.el5_9.i386.rpmLinux
(RHSA-2016:0623) Important: samba security update samba-common-3.0.33-3.40.el5_9.i386.rpmLinux
(RHSA-2016:0623) Important: samba security update samba-swat-3.0.33-3.40.el5_9.i386.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-admintools-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-client-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-debuginfo-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-python-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-server-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-server-dns-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update ipa-server-trust-ad-4.2.0-15.el7_2.6.1.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libldb-1.1.25-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libldb-debuginfo-1.1.25-1.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libldb-debuginfo-1.1.25-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libldb-devel-1.1.25-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libsmbclient-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libsmbclient-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libsmbclient-devel-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libsmbclient-devel-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtalloc-2.1.5-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtalloc-debuginfo-2.1.5-1.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtalloc-debuginfo-2.1.5-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtalloc-devel-2.1.5-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtdb-1.3.8-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtdb-debuginfo-1.3.8-1.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtdb-debuginfo-1.3.8-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtdb-devel-1.3.8-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtevent-0.9.26-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtevent-debuginfo-0.9.26-1.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtevent-debuginfo-0.9.26-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libtevent-devel-0.9.26-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libwbclient-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libwbclient-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libwbclient-devel-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update libwbclient-devel-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update openchange-2.0-10.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update openchange-debuginfo-2.0-10.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update openchange-debuginfo-2.0-10.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update openchange-devel-2.0-10.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update openchange-devel-docs-2.0-10.el7_2.noarch.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update pyldb-1.1.25-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update pyldb-devel-1.1.25-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update pytalloc-2.1.5-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update pytalloc-devel-2.1.5-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update python-tdb-1.3.8-1.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-client-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-client-libs-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-client-libs-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-common-4.2.10-6.el7_2.noarch.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-common-libs-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-common-tools-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-dc-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-dc-libs-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-debuginfo-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-debuginfo-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-devel-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-devel-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-libs-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-libs-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-pidl-4.2.10-6.el7_2.noarch.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-python-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-test-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-test-devel-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-test-libs-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-test-libs-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-vfs-glusterfs-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-winbind-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-winbind-clients-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-winbind-krb5-locator-4.2.10-6.el7_2.x86_64.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-winbind-modules-4.2.10-6.el7_2.i686.rpmLinux
(RHSA-2016:0612)Critical: and4 security, bug fix, and enhancement update samba-winbind-modules-4.2.10-6.el7_2.x86_64.rpmLinux
Bind-dyndb-ldap update (ELSA-2024-3044) bind-dyndb-ldap-11.6-4.module+el8.9.0+90094+20819f5a.x86_64.rpmLinux
Custodia update (ELSA-2024-3044) custodia-0.6.0-3.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Ipa-client update (ELSA-2024-3044) ipa-client-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.x86_64.rpmLinux
Ipa-client update (ELSA-2024-3044) ipa-client-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.x86_64.rpmLinux
Ipa-client-common update (ELSA-2024-3044) ipa-client-common-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Ipa-client-common update (ELSA-2024-3044) ipa-client-common-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.noarch.rpmLinux
Ipa-client-epn update (ELSA-2024-3044) ipa-client-epn-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.x86_64.rpmLinux
Ipa-client-epn update (ELSA-2024-3044) ipa-client-epn-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.x86_64.rpmLinux
Ipa-client-samba update (ELSA-2024-3044) ipa-client-samba-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.x86_64.rpmLinux
Ipa-client-samba update (ELSA-2024-3044) ipa-client-samba-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.x86_64.rpmLinux
Ipa-common update (ELSA-2024-3044) ipa-common-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Ipa-common update (ELSA-2024-3044) ipa-common-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.noarch.rpmLinux
Ipa-healthcheck update (ELSA-2024-3044) ipa-healthcheck-0.12-3.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Ipa-healthcheck-core update (ELSA-2024-3044) ipa-healthcheck-core-0.12-3.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Ipa-healthcheck-core update (ELSA-2024-3044) ipa-healthcheck-core-0.12-3.module+el8.9.0+90095+d672673c.noarch.rpmLinux
Ipa-python-compat update (ELSA-2024-3044) ipa-python-compat-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Ipa-python-compat update (ELSA-2024-3044) ipa-python-compat-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.noarch.rpmLinux
Ipa-selinux update (ELSA-2024-3044) ipa-selinux-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Ipa-selinux update (ELSA-2024-3044) ipa-selinux-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.noarch.rpmLinux
Ipa-server update (ELSA-2024-3044) ipa-server-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.x86_64.rpmLinux
Ipa-server-common update (ELSA-2024-3044) ipa-server-common-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Ipa-server-dns update (ELSA-2024-3044) ipa-server-dns-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Ipa-server-trust-ad update (ELSA-2024-3044) ipa-server-trust-ad-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.x86_64.rpmLinux
Opendnssec update (ELSA-2024-3044) opendnssec-2.1.7-1.module+el8.9.0+90094+20819f5a.x86_64.rpmLinux
Python3-custodia update (ELSA-2024-3044) python3-custodia-0.6.0-3.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Python3-ipaclient update (ELSA-2024-3044) python3-ipaclient-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Python3-ipaclient update (ELSA-2024-3044) python3-ipaclient-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.noarch.rpmLinux
Python3-ipalib update (ELSA-2024-3044) python3-ipalib-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Python3-ipalib update (ELSA-2024-3044) python3-ipalib-4.9.13-8.0.1.module+el8.10.0+90332+38aded3e.noarch.rpmLinux
Python3-ipaserver update (ELSA-2024-3044) python3-ipaserver-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Python3-ipatests update (ELSA-2024-3044) python3-ipatests-4.9.13-8.0.1.module+el8.10.0+90331+72067d32.noarch.rpmLinux
Python3-jwcrypto update (ELSA-2024-3044) python3-jwcrypto-0.5.0-1.1.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Python3-jwcrypto update (ELSA-2024-3044) python3-jwcrypto-0.5.0-1.1.module+el8.9.0+90095+d672673c.noarch.rpmLinux
Python3-kdcproxy update (ELSA-2024-3044) python3-kdcproxy-0.4-5.module+el8.9.0+90122+3305dc1d.noarch.rpmLinux
Python3-pyusb update (ELSA-2024-3044) python3-pyusb-1.0.0-9.1.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Python3-pyusb update (ELSA-2024-3044) python3-pyusb-1.0.0-9.1.module+el8.9.0+90095+d672673c.noarch.rpmLinux
Python3-qrcode update (ELSA-2024-3044) python3-qrcode-5.1-12.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Python3-qrcode update (ELSA-2024-3044) python3-qrcode-5.1-12.module+el8.9.0+90095+d672673c.noarch.rpmLinux
Python3-qrcode-core update (ELSA-2024-3044) python3-qrcode-core-5.1-12.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Python3-qrcode-core update (ELSA-2024-3044) python3-qrcode-core-5.1-12.module+el8.9.0+90095+d672673c.noarch.rpmLinux
Python3-yubico update (ELSA-2024-3044) python3-yubico-1.3.2-9.1.module+el8.9.0+90094+20819f5a.noarch.rpmLinux
Python3-yubico update (ELSA-2024-3044) python3-yubico-1.3.2-9.1.module+el8.9.0+90095+d672673c.noarch.rpmLinux
Slapi-nis update (ELSA-2024-3044) slapi-nis-0.60.0-4.module+el8.10.0+90297+bfe93ccc.x86_64.rpmLinux
Softhsm update (ELSA-2024-3044) softhsm-2.6.0-5.module+el8.9.0+90094+20819f5a.x86_64.rpmLinux
Softhsm-devel update (ELSA-2024-3044) softhsm-devel-2.6.0-5.module+el8.9.0+90094+20819f5a.x86_64.rpmLinux
CVE-2016-2118NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234