FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

samba -- Elevation of privilege to Active Directory Domain Controller

Affected packages
4.0.0 <= samba4 < 4.0.23
4.1.0 <= samba41 < 4.1.15

Details

VuXML ID d4f45676-9d33-11e4-8275-000c292e4fd8
Discovery 2015-01-15
Entry 2015-01-16

Samba team reports:

In Samba's AD DC we neglected to ensure that attempted modifications of the userAccountControl attribute did not allow the UF_SERVER_TRUST_ACCOUNT bit to be set.

References

CVE Name CVE-2014-8143
URL https://www.samba.org/samba/security/CVE-2014-8143