redhat · CVE-2016-2124

Quick triage

Priority: medium 公開: 2021-11-09 00:00:00 UTC Updated: 2021-11-09 00:00:00 UTC

参照: Official redhat advisory, NVD, CVE.org · CVE 詳細

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

Description:

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

cvelogic Threat Intelligence