CVE-2016-2115 in SambaИнформация

Сводка

по MITRE

Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Резервировать

29.01.2016

Раскрытие

24.04.2016

Модерация

принято

Вход

VDB-82409

EPSS

0.10232

KEV

Нет

Деятельности

Очень низкий

Источники

Want to know what is going to be exploited?

We predict KEV entries!