Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2019-14861

Good to know:

icon
icon

Date: December 10, 2019

All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the (poorly named) dnsserver RPC pipe provides administrative facilities to modify DNS records and zones. Samba, when acting as an AD DC, stores DNS records in LDAP. In AD, the default permissions on the DNS partition allow creation of new records by authenticated users. This is used for example to allow machines to self-register in DNS. If a DNS record was created that case-insensitively matched the name of the zone, the ldb_qsort() and dns_name_compare() routines could be confused into reading memory prior to the list of DNS entries when responding to DnssrvEnumRecords() or DnssrvEnumRecords2() and so following invalid memory as a pointer.

Language: C

Severity Score

Related Resources (16)

https://www.samba.org/samba/security/CVE-2019-14861.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14861
https://nvd.nist.gov/vuln/detail/CVE-2019-14861
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PJH3ROOFYMOATD2UEPC47P5RPBDTY77E/
https://usn.ubuntu.com/4217-2/
https://security.alpinelinux.org/vuln/CVE-2019-14861
https://usn.ubuntu.com/4217-1/
https://security-tracker.debian.org/tracker/CVE-2019-14861
https://www.synology.com/security/advisory/Synology_SA_19_40
https://people.canonical.com/~ubuntu-security/cve/CVE-2019-14861
https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html
https://security.gentoo.org/glsa/202003-52
http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00038.html
https://security.netapp.com/advisory/ntap-20191210-0002/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WNKA4YIPV7AZR7KK3GW6L3HKGHSGJZFE/
https://www.mend.io/vulnerability-database/CVE-2019-14861

Severity Score

Weakness Type (CWE)

Input Validation

CWE-20

Incorrect Default Permissions

CWE-276

Top Fix

icon

Upgrade Version

Upgrade to version 4.9.17;4.10.11;4.11.3

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): MEDIUM
Authentication (AU): SINGLE
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us