vulnerability
Oracle Linux: CVE-2016-2126: ELSA-2017-0662: samba security and bug fix update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:N/I:N/A:P) | Dec 19, 2016 | Mar 28, 2017 | Dec 3, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:P)
Published
Dec 19, 2016
Added
Mar 28, 2017
Modified
Dec 3, 2025
Description
Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local service with access to the winbindd privileged pipe can cause winbindd to cache elevated access permissions.
A flaw was found in the way Samba handled PAC (Privilege Attribute Certificate) checksums. A remote, authenticated attacker could use this flaw to crash the winbindd process.
A flaw was found in the way Samba handled PAC (Privilege Attribute Certificate) checksums. A remote, authenticated attacker could use this flaw to crash the winbindd process.
Solutions
oracle-linux-upgrade-ctdboracle-linux-upgrade-ctdb-testsoracle-linux-upgrade-libsmbclientoracle-linux-upgrade-libsmbclient-develoracle-linux-upgrade-libwbclientoracle-linux-upgrade-libwbclient-develoracle-linux-upgrade-sambaoracle-linux-upgrade-samba4oracle-linux-upgrade-samba4-clientoracle-linux-upgrade-samba4-commonoracle-linux-upgrade-samba4-dcoracle-linux-upgrade-samba4-dc-libsoracle-linux-upgrade-samba4-develoracle-linux-upgrade-samba4-libsoracle-linux-upgrade-samba4-pidloracle-linux-upgrade-samba4-pythonoracle-linux-upgrade-samba4-testoracle-linux-upgrade-samba4-winbindoracle-linux-upgrade-samba4-winbind-clientsoracle-linux-upgrade-samba4-winbind-krb5-locatororacle-linux-upgrade-samba-clientoracle-linux-upgrade-samba-client-libsoracle-linux-upgrade-samba-commonoracle-linux-upgrade-samba-common-libsoracle-linux-upgrade-samba-common-toolsoracle-linux-upgrade-samba-dcoracle-linux-upgrade-samba-dc-libsoracle-linux-upgrade-samba-develoracle-linux-upgrade-samba-docoracle-linux-upgrade-samba-domainjoin-guioracle-linux-upgrade-samba-glusterfsoracle-linux-upgrade-samba-krb5-printingoracle-linux-upgrade-samba-libsoracle-linux-upgrade-samba-pidloracle-linux-upgrade-samba-pythonoracle-linux-upgrade-samba-swatoracle-linux-upgrade-samba-testoracle-linux-upgrade-samba-test-libsoracle-linux-upgrade-samba-vfs-glusterfsoracle-linux-upgrade-samba-winbindoracle-linux-upgrade-samba-winbind-clientsoracle-linux-upgrade-samba-winbind-develoracle-linux-upgrade-samba-winbind-krb5-locatororacle-linux-upgrade-samba-winbind-modules
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.