|
|
CVE Reference: CVE-2006-1059 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-1059 |
|
|
Description: The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/25575 TRUSTIX http://www.trustix.org/errata/2006/0018 ST 1015850 SAID Secunia Advisory: SA19539 Secunia Advisory: SA19455 Secunia Advisory: SA19468 OSVDB 24263 FEDORA http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00114.html CONFIRM http://us1.samba.org/samba/security/CAN-2006-1059.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/429370/100/0/threaded BID 17314 |
|
| Return to the previous page. |
