ISS X-Force Database: samba-logfile-account-cleartext(25575): Samba clear text machine trust account credentials

Samba clear text machine trust account credentials

samba-logfile-account-cleartext (25575)

Medium Risk

Description:

Samba could allow a local attacker to obtain sensitive account information. The winbindd daemon writes the machine trust account password to the log files in clear text and by default the log files are world readable. An attacker could use the machine trust account credentials to impersonate a domain server and obtain information regarding domain users and groups.

Platforms Affected:

Samba, Samba 3.0.21
Samba, Samba 3.0.21a
Samba, Samba 3.0.21b
Samba, Samba 3.0.21c

Remedy:

Upgrade to the latest version of Samba (3.0.22 or later) or apply the patch for this vulnerability, available from the Samba Web site. See References.

Consequences:

Obtain Information

References:

BugTraq Mailing List, Wed Mar 29 2006 - 23:22:34 CST, [SECURITY] Samba 3.0.21-3.0.21c: Exposure of machine account credentials in winbindd log files at http://archives.neohapsis.com/archives/bugtraq/2006-03/0575.html.
Samba Web site, Samba - Security Updates and Information at http://www.samba.org/samba/history/security.html.
Samba Web site, CAN-2006-1059: Exposure of machine account credentials in winbind log files at http://us5.samba.org/samba/security/CAN-2006-1059.html.
BID-17314: Samba Machine Trust Account Local Information Disclosure Vulnerability
CVE-2006-1059: The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.
OSVDB ID: 24263: Samba winbindd Debug Log Server Credential Local Disclosure
SA19455: Samba Exposure of Machine Account Credentials
SECTRACK ID: 1015850: Samba winbindd Daemon Discloses Server Password to Local Users
VUPEN/ADV-2006-1179: Samba winbindd Machine Trust Account Password Disclosure Vulnerability

Reported:

Mar 29, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page