Security Bulletin: Vulnerabilities in Samba affect IBM i

Vulnerability Details

CVEID: CVE-2015-3223
DESCRIPTION: Samba is vulnerable to a denial of service, caused by an error in the daemon LDAP server. By sending specially crafted packets, an attacker could exploit this vulnerability to cause the daemon process to become unresponsive.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109136 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID: CVE-2015-5252
DESCRIPTION: Samba could allow a remote attacker to launch a symlink attack, caused by the improper verification of symlinks by the smbd server. An attacker could exploit this vulnerability to gain access to files located outside of the exported share path.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109137 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

CVEID: CVE-2015-5296
DESCRIPTION: Samba could allow a remote attacker to bypass security restrictions, caused by the failure to properly negotiate signing when establishing an encrypted connection. A remote attacker could exploit this vulnerability using man-in-the-middle techniques to perform downgrade attacks to connect via an unsigned, unencrypted connection.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109138 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)

CVEID: CVE-2015-5299
DESCRIPTION: Samba could allow a remote attacker to bypass security restrictions, caused by a missing access control check in the vfs_shadow_copy2 module. An attacker could exploit this vulnerability to view the current snapshots.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109139 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

CVEID: CVE-2015-5330
DESCRIPTION: Samba could allow a remote attacker to obtain sensitive information, caused by an error in the samba daemon process. By sending specially crafted packets to the LDAP server, an attacker could exploit this vulnerability to return heap memory beyond the length of therequested value.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109140 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

CVEID: CVE-2015-7540
DESCRIPTION: Samba is vulnerable to a denial of service, caused by an error in the daemon LDAP server. By sending specially crafted packets, an attacker could exploit this vulnerability to consume all available memory resources.
CVSS Base Score: 5.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109135 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID: CVE-2015-8467
DESCRIPTION: Samba could allow a remote authenticated attacker to bypass security restrictions, caused by the failure to implement the SeMachineAccountPrivilege functionality. An attacker could exploit this vulnerability to bypass the quota limit and create excessive machine accounts on the system.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/109141 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N)