Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DNS:QUERY:CVE-2018-1140-DOS |
|---|---|
Severity |
Minor |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
DNS |
Keywords |
Samba AD DC CVE-2018-1140 Denial of service |
Release Date |
2018/09/27 |
Update Number |
3103 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DNS: Samba AD DC CVE-2018-1140 Denial of service
This signature detects attempts to exploit a known vulnerability against Samba. A successful attack can result in a denial-of-service condition.
Extended Description
A missing input sanitization flaw was found in the implementation of LDP database used for the LDAP server. An attacker could use this flaw to cause a denial of service against a samba server, used as a Active Directory Domain Controller. All versions of Samba from 4.8.0 onwards are vulnerable
Affected Products
- Samba samba 4.8.0
- Samba samba 4.8.1
- Samba samba 4.8.2
- Samba samba 4.8.3
References
- BugTraq: 105082
- CVE: CVE-2018-1140
- URL: https://www.samba.org/samba/security/cve-2018-1140.html